An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
An industry-wide security flaw identified as CVE-2018-11235 has been discovered in Git. The vulnerability can lead to arbitrary code execution when a user performs operations in a malicious repository. CVE-2018-11235 Official Description In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x…
Facebook has finally introduced two-factor (2FA) authentication to users who are not willing to share their phone numbers. Instead of giving away such highly sensitive personal details, users are now welcome to try out Facebook’s 2FA via authenticator apps where…
A new privacy-related (perhaps inspired by the GDPR activation) scam, this time affecting Facebook users, has surfaced the web. Read carefully this article in case you have posted a notice to your Facebook timeline where you proclaim your copyright ownership…
Pornhub is launching a VPN service with free, unlimited bandwidth to improve the privacy of its users. The service is called VPNhub and the apps for iOS and Android are already available for download, with Windows and MacOS apps for…
Microsoft has once again been found to push Windows 10 to users who specifically said they didn’t want it. This time user complaints are about Windows 10 version 1803 – the upgrade has been pushed onto systems that were set…
A Freedom of Information Act (FOIA) request by the American Civil Liberties Union (ACLU) recently revealed that Amazon has started selling facial recognition software to at least two US law enforcement agencies. A recently published ACLU report has shown that…
A relatively new research recently uncovered that there is a hidden patch gap in Android devices. Researchers spent two years analyzing 1,200 Android phones and presenting the results during the Hack in the Box conference in Amsterdam. Now, new research…
LocationSmart claimed that it could locate any phone in the United States, and now it is being investigated after a security researcher exposed a security vulnerability on its website. As a result, the Federal Communications Comission (FCC) has started an…
Has your Facebook Android app been acting strangle lately? User reports indicate that the app has been users for superuser (root) permissions which grant Facebook full access to users’ devices. The superuser prompt says “Grants full access to your device”…
GDPR (General Data Privacy Regulation) is on its way, replacing the EU’s 1995 Data Protection Directive, and it is going to change the world of personal information for good. Exactly what will change and how are enterprises handling our data…
A new report reveals that yet another Facebook app has been gathering personal details from millions of users, and selling it to interested parties. Apparently, data from millions of Facebook users who used the popular myPersonality app, including their answers…
CVE-2018-1000136 is the identifier of a security vulnerability in the Electron framework used in popular apps such as Skype, Slack, Signal, and WhatsApp. The Electron framework is open-source and is created and maintained by GitHub. The flaw was discovered by…
Volkswagen has been found prone to car-hacking vulnerabilities, a detailed Computest report recently revealed. Researchers unearthed that the IVI systems (In-Vehicle Infotainment) in some Volkswagen models are vulnerable to remote hacking. These vulnerabilities could also lead to the compromise of…
Because of how popular it is among users worldwide, Facebook has often been leveraged in various scams and malware attacks. The social platform is regularly abused by cybercriminals who use it to spread their payloads via malicious links in messages.…
A new critical vulnerability has been discovered in Linux kernel up to version 4.16.5, security researchers just reported. The flaw, which is given the CVE-2018-10940 identifier is said to affect the function cdrom_ioctl_media_changed of the file drivers/cdrom/cdrom.c. Related Story: CVE-2018-8781:…
CVE-2018-10115 is the identifier of the latest security vulnerability discovered in 7-Zip that affects all the versions of the program prior to 18.05. More about 7-Zip 7-Zip is a free open-source archiver with a high compression ratio. The program is…
A new cryptocurrency miner has been detected infecting servers worldwide. The miner, dubbed MassMiner, is exploiting several known vulnerabilities in its malicious campaigns: An Oracle WebLogic flaw known as CVE-2017-10271 A Windows SMB flaw known as CVE-2017-0143 An Apache Struts…
Two magnetic tapes containing transaction details for 12 million accounts that belong to Australia’s Commonwealth Bank are missing. This incident is perhaps the largest data loss in Australia. Curiously, the incident stayed under the radar for two years – until…
Check Point researchers recently decided to review the Linux kernel, and more specifically they looked into drivers trying to roll their own usage of the mmap() function. CVE-2018-8781 Official Description: The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c at the Linux kernel version…
Facebook has been widely accused of being negligent and abusive in terms of the privacy of its users. However, it is not the only social network that has been caught at the crime scene. Apparently, Twitter has recently confirmed to…
