An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A new Linux wormable botnet has been observed in the wild. Called Abcbot, the threat is targeting “relatively new cloud service providers (CPSs) with cryptocurrency-mining malware and cryptojacking attacks,” according to Trend Micro’s findings. The malware deploys code that removes…
Security researchers from Cybereason shed new light into the workings of TrickBot. TrickBot and Shathak Threat Groups Join Forces According to the latest findings, the threat actors behind the TrickBot trojan, known as Wizard Spider, are currently working together with…
What Is FocusGuide Mac Adware? A new adware, called FocusGuide and targeting Macs has been detected in the wild. The adware could be triggering unwanted advertisements, and could also replace your default search engine and new tab page with one…
New Linux vulnerabilities discovered. Security researchers from jFrog and Claroty reported the discovery of 14 vulnerabilities in the BusyBox Linux utility. BusyBox Linux Vulnerabilities: from CVE-2021-42373 to CVE-2021-42386 What is BusyBox? BusyBox provides commands for embedded Linux environment within Android.…
Robinhood, the commission-free investing platform, has suffered an enormous data breach, according to a statement the company made. Related: Volkswagen Vendor Data Breach Exposed Details of 3.3 Million Customers Late in the evening of November 3, Robinhood experienced a data…
What Is WindowsMegabyte? WindowsMegabyte is a potentially unwanted, ad-supported application (shortly known as adware). If you have this application installed without your knowledge, then it may have been included in the installer of another app you installed intentionally. This method…
CVE-2021-43267 is a newly disclosed security vulnerability in the Linux Kernel’s Transparent Inter Process Communication (TIPC). The flaw can be exploited both locally and remotely, allowing for arbitrary code execution within the kernel. The result of this would be taking…
What Is Color ssc Browser Extension? Color ssc is а suspicious browser extension that was available for download on Chrome Web Store. Currently, the extension seems to be unavailable there, but it could be available on other stores. If you…
What Is CheckLetter Mac Adware? CheckLetter is a potentially unwanted application (PUA) targeting macOS users. The app also has adware capabilities, meaning that it could trigger advertisements and affect your browsers. In some cases, apps such as CheckLetter also feature…
What Is SecureTab? SecureTab is a browser hijacker and a suspicious browser extension that could take over your browser without your consent. This could happen as a result of a bundled download. A clear sign that Secure Tab browser extension…
CVE-2021-1048 is a new zero-day vulnerability in Android that was fixed together with 38 other flaws in November 2021’s patch rollout. Apparently, the zero-day is being exploited in the wild. CVE-2021-1048 Kernel Zero-Day CVE-2021-1048 is a use-after-free issue in the…
What Is News-wavaye.cc? News-wavaye.cc is a suspicious site that may generate push notifications and pop-up ads. The site may also cause intense browser redirects. The appearance of News-wavaye.cc in your browser could mean that an adware or a PUP (potentially…
Shrootless, or CVE-2021-30892, is a new, OS-level vulnerability that could allow threat actors to circumvent security restrictions, known as System Integrity Protection (SIP), in macOS to take over the device. Once this is done, hackers could perform various arbitrary operations…
Cybercriminals have been quite active in developing new malware samples and improving their malicious approaches. According to PurpleSec statistics, cybercrime activity throughout 2021 has been up 600% due to the COVID-19 pandemic. As a result, cybersecurity researchers have analyzed some…
R.Ransomware (Rozbeh Ransomware) R.Ransomware also known as Rozbeh cryptovirus is a new file-encrypting threat detected in the wild. R.Ransomware can be recognized by its ransom note, entitled read_it.txt, and the file extension it appends to encrypted data, which contains four…
A previously unknown malware loader was uncovered this week. Called Wslink, the tool has been described as “simple yet remarkable,” capable of loading malicious Windows binaries. The loader has been used in attacks against Central Europe, North America, and the…
A new malware loader with the potential to become “the next big thing” in spam operations has been detected. Dubbed SquirrelWaffle, the threat is “mal-spamming” malicious Microsoft Office documents. The end goal of the campaign is delivering the well-known Qakbot…
Security researchers detected a global, large-scale premium SMS campaign that leverages 151 malicious Android apps downloaded 10.5 million times. The end goal of the campaign, called UltimaSMS, is to trick users into premium subscription services without their knowledge or consent.…
Cybersecurity researchers detected a new ransomware in the wild, which can be recognized by the extensions it appends to encrypted files: .willow. The so-called Willow ransomware or Willow virus file also changes the victim’s desktop wallpaper and creates the “READMEPLEASE.txt”…
Mozilla blocked two malicious Firefox add-ons installed by nearly half a million users. The extensions abused the Proxy API to obstruct updates to the browser. Related: The Great Suspender Chrome Extension Contains Malware Bypass and Bypass XM Extensions Obstruct Browser…
