An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Critical Flaws in Ingress NGINX Controller Enable Remote Code Execution A newly disclosed set of five severe vulnerabilities, dubbed IngressNightmare by cloud security firm Wiz, has put more than 6,500 Kubernetes clusters at risk. These critical flaws impact the Ingress…
A newly disclosed vulnerability in the Next.js React framework has been assigned a CVSS score of 9.1, marking it as a critical security risk. Tracked as CVE-2025-29927, the flaw can be exploited under specific conditions to bypass middleware-based authorization checks,…
What Is Moscovium Ransomware? Moscovium is a form of ransomware that targets user data by encrypting files and demanding a ransom for their recovery. Once active, the ransomware alters the names of affected files by appending the “.m0sC0v1um” extension—transforming something…
BrowserValue BrowserValue is a potentially unwanted application designed specifically for Mac systems, operating under the AdLoad adware umbrella. Known for its aggressive advertising tactics, this program floods web browsers with disruptive elements such as pop-ups, banners, and in-text ads. The…
libeay32.dll libeay32.dll is a dynamic link library associated with the OpenSSL toolkit, used for cryptographic operations such as encryption, decryption, and secure SSL/TLS communication. It is commonly bundled with applications that require secure data handling, including web browsers, VPNs, and…
Xfinder.pro Xfinder.pro is a suspicious redirect domain often associated with unwanted browser behavior, such as automatically redirecting users to misleading websites and phishing pages. It typically appears as part of a broader adware or browser hijacker infection and may be…
Two Critical Vulnerabilities Expose Administrative Access Two now-patched but previously critical vulnerabilities in Cisco Smart Licensing Utility are being actively exploited in the wild, according to reports from the SANS Internet Storm Center. These flaws affect versions 2.0.0, 2.1.0, and…
At least 11 state-sponsored hacking groups from North Korea, Iran, Russia, and China have been actively exploiting a newly uncovered Windows zero-day vulnerability in cyber espionage and data theft attacks since 2017. Despite clear evidence of exploitation, Microsoft has declined…
The U.S. Cybersecurity and Infrastructure Security Agency has identified a significant security flaw affecting NAKIVO Backup & Replication software, adding it to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation in the wild. The vulnerability, tracked as CVE-2024-48248…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly discovered vulnerability linked to the supply chain compromise of the GitHub Actions, tj-actions/changed-files, to its Known Exploited Vulnerabilities (KEV) catalog. The flaw, tracked as CVE-2025-30066, has been assigned…
What Is Pmropn.exe? Pmropn.exe is an executable file associated with PremierOpinion, a market research software developed by VoiceFive, Inc., a subsidiary of comScore. While it is marketed as a legitimate data collection tool, several antivirus programs have flagged it as…
Clarity Tab Browser Extension Clarity Tab is a browser extension promoted as a utility which enhances user productivity by organizing bookmarks and displaying them prominently on the new tab page. However, Clarity Tab has been reported to act as a…
A newly disclosed security flaw in Apache Tomcat is being actively exploited, following the release of a public proof-of-concept (PoC) just 30 hours after its disclosure. Affected Apache Tomcat Versions The vulnerability, tracked as CVE-2025-24813, impacts the following versions: Apache…
Security researcher Yohanes Nugroho has developed a decryptor for the Linux variant of Akira ransomware. The tool leverages GPU power to retrieve decryption keys, allowing victims to unlock their encrypted files for free. Development of Akira Decryptor Nugroho began working…
Smart-search-engine.com Smart-search-engine.com is a bogus search engine that creates redirects, and is associated with a suspicious browser extension called SmartSearch. This extension is categorized as a browser hijacker, which can modify browser settings without user consent, alter default search engines,…
DiscoveryUniverse DiscoveryUniverse is an ad-supported program that targets Mac users. The program is part of the AdLoad adware family, which is known for delivering intrusive advertisements, redirecting web traffic, and potentially collecting user data without consent. Once installed, DiscoveryUniverse injects…
What Is SafeMail? SafeMail has been marketed as a tool for verifying the validity and reputation of email addresses, but in reality, it fails to provide the promised functionality. Instead of providing useful features, SafeMail behaves like a Potentially Unwanted…
Is StealthBrowse Browser Safe? StealthBrowse is advertised as a privacy-focused internet browser available for download on apps.microsoft.com (Microsoft Store). It is marketed as a secure and private browsing alternative, aiming to improve user anonymity and reduce online tracking. Such browsers…
Users searching for pirated software are now prime targets for a new malware campaign that distributes a previously undocumented clipper malware called MassJacker, according to findings from CyberArk. A New Threat in the Piracy Scene Clipper malware is designed to…
Meta has issued a security advisory regarding a newly discovered vulnerability in the FreeType open-source font rendering library. Tracked as CVE-2025-27363, this flaw has been assigned a CVSS score of 8.1, categorizing it as a high-severity issue. Security experts warn…
