An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Follina, now known as CVE-2022-30190 (mitigation is also available), is the name of a new zero-day in Microsoft Office that could be leveraged in arbitrary code execution attacks. The vulnerability was unearthed by the nao_sec research team, following the discovery…
A new distributed denial-of-service botnet has been detected in the wild. Update. According to a new research released by AT&T, EnemyBot is now quickly adopting “one-day vulnerabilities as part of its exploitation capabilities.” Services such as VMware Workspace ONE, Adobe…
Security researchers from cybersecurity firm Cisco Talos recently discovered eight vulnerabilities in the Open Automation Software (OAS) Platform. Vulnerabilities in the Open Automation Software Platform (CVE-2022-26082) The vulnerabilities could be used in various attacks, including denial-of-service caused by improper authentication.…
![Captchaclean.top Ads - How to Remove [Fix]](https://cdn.sensorstechforum.com/wp-content/uploads/2022/02/how-to-remove-adware-sensorstechforum-1-300x171.jpg "Captchaclean.top Ads – How to Remove [Fix]")
What Is Captchaclean.top? Captchaclean.top is a suspicious site designed to trigger push notifications. If you come across this site during your regular browsing, it will prompt you to subscribe to its push notifications. Even though this is not malicious, it…
A new research sheds light on a severe vulnerability that affects Quanta Cloud Technology servers. The vulnerability, known as Pantsdown and CVE-2019-6260, could cause malicious code execution attacks. According to Eclypsium researchers, the flaw was discovered in 2019, affecting multiple…
![Remove ChromeLoader Browser Extension [macOS/Windows]](https://cdn.sensorstechforum.com/wp-content/uploads/2022/02/browser-redirect-pup-ads-sensorstechforum-1-300x188.jpg "Remove ChromeLoader Browser Extension [macOS/Windows]")
What Is ChromeLoader Browser Extension? ChromeLoader is a malicious browser extension that can be distributed on both Windows and macOS machines. The browser extension is currently being distributed with the help of pirated software (cracked programs, pirated movies and TV…
Beware a persistent and widespread browser hijacker capable of modifying browser settings and redirecting user traffic to advertisement sites. Security researchers are warning about an increase of ChromeLoader campaigns. The threat was first observed in early February, but is now…
Security researchers discovered a new ransomware family that targets Linux systems. Called Cheerscrypt, the ransomware targets VMware ESXi servers. It is noteworthy that last year two vulnerabilities in the VMWare ESXi product were included in the attacks of at least…
![Remove RealAccount Adware [macOS Instructions]](https://cdn.sensorstechforum.com/wp-content/uploads/2022/04/remove-adware-sensorstechforum-300x171.jpg "Remove RealAccount Adware [macOS Instructions]")
What Is RealAccount? RealAccount is an adware program currently targeting macOS users. Such applications are typically distributed via fake software updates and bundled installers, in which they are downloaded alongside other programs. Despite not being viruses, ad-supported apps such as…
![Malicious Python Package [pymafka] Drops Cobalt Strike on macOS, Windows and Linux](https://cdn.sensorstechforum.com/wp-content/uploads/2022/03/advanced-persistent-threat-malware-backdoor-sensorstechforum-1024x585.jpg "Malicious Python Package [pymafka] Drops Cobalt Strike on macOS, Windows and Linux")
Security researchers detected a “mysterious” malicious Python package that downloads the Cobalt Strike malware on Windows, Linux, and macOS systems. Called “pymafka,” the package masquerades as the legitimate popular library PyKafka, a programmer-friendly Kafka client for Python. According to Sonatype…
What Is Tap togo? Tap togo is categorized as a browser hijacker, set to change the default settings of your browser. As a result, your default search engine (start page) can be replaced with togosearching.com without your initial approval or…
What Is Greenspecialmyline.com? Greenspecialmyline.com is a suspicious website that triggers browser notifications. These push notifications are designed to trick you into subscribing, and if you do, you will be flooded with various advertisements and browser redirects. The cause for these…
Mozilla released a new version of its Firefox browser (100.0.2) fixing a set of two critical security vulnerabilities. The patches make this minor update quite significant in importance. Affected versions include Firefox, Firefox ESR, Firefox for Android, and Thunderbird (Firefox…
What Is Little-Light? Little-Light is yet another suspicious browser extension that triggers ads and redirects to suspicious pages. The extension may be promoted on various third-party app stores, or could be included in the installers of freeware. You may also…
What Is Keep It Smart? Keep It Smart is a browser hijacker that comes in the form of a browser extension. If your default search engine has been changed to keepitsmart.today, then you have the extension downloaded to your browser.…
What Is BlockAll – block ads? “BlockAll – block ads” is the name of a browser extension that generates advertisements. This means that BlockAll is categorized as an adware and a potentially unwanted program. The extension is supposed to prevent…
What Is News-gocuco.com? News-gocuco.com is a suspicious website that may try to make you subscribe to its push notifications. Once you do, you may be flooded with various advertisements and intensive browser redirects. Because of this behavior, such websites are…
CVE-2021-22573 is a vulnerability in Google’s OAuth client for Java, with a severity score of 8.7 out of 10 on the CVSS scale. What Causes the CVE-2021-22573 Vulnerability? The vulnerability stems from the fact that “IDToken verifier does not verify…
UpdateAgent is a malware dropper with a well-built infrastructure targeting macOS systems, and it seems that it has been updated once again. According to Jamf Threat Labs, changes were implemented to the dropper, primarily focused on new executables written in…
macOS is generally believed to be bulletproof against malware attacks. Unfortunately, statistics reveal a different picture where Apple’s operating system is often found vulnerable. For instance, in 2017 security researchers detected an increase of 28.83 percent of total reported security…
