An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Yet another chip vulnerability has been discovered, CVE-2018-3665, which has been called Floating Point Lazy State Save/Restore. The flaw resides in Intel Core and Xeon processors, and is similar to Spectre since it is a speculative execution flaw. Related Story:…
Security researchers just discovered a code-signing bypass vulnerability that allows malicious code to masquerade as an official Apply system file. In other words, some of the implementations of Apple’s official code-signing API can be exploited by hackers. Apple has made…
According to a statement made by the company, European electronics giant Dixons Carphone has suffered a serious data breach, or what it appears to be, two separate data breaches. Dixons Carphone Official Statement on the Data Breach As part of…
According to many experts in the cybersecurity field and to statistics as well, Bitcoin is no longer be the most preferable cryptocurrency used by cybercriminals in their operations. Bitcoin’s high profile and lack of complete anonymity has made cybercriminals turn…
Three vulnerabilities have been found in Foscam security cameras. Owners of such cameras are urged to update as soon as possible. The flaws are described as an arbitrary file-deletion bug, a shell command-injection bug and a stack-based buffer oferflow vulnerability.…
Security researcher Brian Krebs has revealed some interesting details in terms of some of the riskiest domains on the Internet. Apparently, websites ending with some of the latest TLDs (top-level domains) such as .men, .work and .click are considered highly…
A fine in the size of 250,000 euro has been imposed on Optical Center, a French company specialized in selling eye and hearing aids. Apparently, the company has failed to secure the data of its customers on its website, and…
Are you still resisting Windows 10 and running Windows 7 or Windows 8? If that is your case, you should note that, starting July without providing a specific date, Microsoft is planning to no longer participate in the technical support…
A previously unknown piece of complex malware with spying capabilities was recently discovered by researchers at cybersecurity firm ESET. The spyware is dubbed InvisiMole and is regarded as an advanced cyber espionage tool most likely designed for attacks on nation-state…
Yet another bug has been just found in Facebook automatically suggesting posting publicly when users were creating their posts. Related Story: Facebook Scraped SMS and Calls Data on Android Devices Facebook Bug Affects 14 Million Users, Problem Now Fixed According…
RSA has released its Fraud Attack Trends report for Q1 of 2018. The report reveals that newsjacking has become fraudsters’ favorite way of empowering phishing attacks, among other things. A recent news that fraudsters leveraged to incite a major phishing…
Online ticketing service Ticketfly has been targeted by a malicious actor and as a result, users’ personal information was stolen. In addition to that, Ticketfly’s website was defaced, and a message was dropped on the compromised homepage which said “Your…
There have been multiple cases of hackers leveraging Facebook Messenger and WhatsApp, and now Telegram is becoming a preferred target for hackers as evident by the increasing number of abuse cases on the service. Taking advantage of tools and services…
There are data breaches and then there are data breaches. Depending on the personal or sensitive information that is being leaked, data breaches can be true privacy nightmares. Related Story: Microsoft Builds a DNA Computer, Says Cancer Is a Computational…
Security researchers have been following the activity surrounding the infamous Rig exploit kit. In these campaigns, attackers are compromising websites to inject a malicious script that redirects potential victims to the EK’s landing page. This attack scenario slightly changed in…
A new report titled “Federal Cybersecurity Risk Determination Report and Action Plan” has shed some light on the cybersecurity inadequacy of U.S. federal agencies. Please note that: The Office of Management and Budget (OMB) is publishing this Federal Cybersecurity Risk…
A flaw has been discovered in Windows’s JScript component. The vulnerability can lead to execution of malicious code on a vulnerable system, researchers warn. More about the JScript Component Vulnerability The JScript flaw was discovered by security researcher Dmitri Kaslov…
Is GDPR going to reflect the activity of the WHOIS database which has been helping law enforcement and security researchers uncover malware operators? According to two cybersecurity and privacy attorneys, GDPR is very likely to interfere with the availability of…
Chrome 67 for Windows has just been released. The stable release brings along 34 security fixes and default support for WebAuthn, the new specification that kills off passwords. More about Chrome 67 Chrome 67 is the first version of Chrome…
An industry-wide security flaw identified as CVE-2018-11235 has been discovered in Git. The vulnerability can lead to arbitrary code execution when a user performs operations in a malicious repository. CVE-2018-11235 Official Description In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x…
