An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
CVE-2021-45382 is a Remote Code Execution (RCE) vulnerability in D-Link routers. More specifically, all series of H/W revisions D-Link DIR-810L, DIR-820L/LW, DIR-826L, DIR-830L, and DIR-836L routers via the DDNS function in ncc2 binary file, are affected, according to the official…
What Is Ad Block Ultra? Ad Block Ultra is a suspicious browser extension that promises to remove all unwanted advertisements while you are browsing. However, instead of doing so, it may generate the display of even more ads. This is…
What Is Freeadvworld.com? Freeadvworld.com is a browser redirect that may cause pop-up ads, banners, and push notifications. The website may redirect to Yahoo.com, an activity typical for many browser hijackers, adware, rogue search engines, and potentially unwanted applications (PUAs). Even…
Security researchers reported a new malware strain, capable of distributing ransomware and performing DDoS attacks. Called Borat after the infamous mockumentary movie, the malware is a RAT, or a Remote Access Trojan, and it provides the two activities alongside the…
Hydra, the world’s largest dark web marketplace, has been taken down by the German authorities. As a result, 543 Bitcoins, or approximately €23 million, were seized, according to Bundeskriminalamt’s press release (originally in German). The take-down operation was possible thanks…
CVE-2022-22639 is a recently discovered, already patched macOS vulnerability in suhelperd, a helper daemon process for Software Update in Apple’s operating system. The vulnerability was discovered by Trend Micro researchers who also provided a detailed analysis of the issue. More…
Security researchers recently identified two critical code vulnerabilities in a central component of the PHP supply chain. Called PEAR, or PHP Extension and Application Repository, the component is both a framework and a distribution system for reusable PHP components. The…
Another variant of the infamous Mirai botnet is circling the web, exploiting a list of specific vulnerabilities in TOTOLINK routers. The critical vulnerabilities are relatively new, disclosed in the period between February and March 2022. Affected is the Linux platform.…
What Is Gooddaywith-captcha.top? Are you being randomly redirected to Gooddaywith-captcha.top? Or are you witnessing intrusive pop-up ads and push notifications stemming from Gooddaywith-captcha.top? In the following article, we are going to address these questions together, and examine the possible scenarios…
One of the latest major cyberattacks that disabled tens of thousands Viasat satellites broadband models a few weeks ago is most likely associated with the VPNFilter malware, attributed to Russia. The conclusion comes from SentinelOne. SentinelOne’s Take on the Attack…
What Is Tinyurl.ru Browser Redirect? Is your browser redirecting you to Tinyurl.ru without your approval? Or has it replaced the default search page of your browser (a behavior typical for browser hijackers)? If so, please note that you may have…
Emergency patches that fix two zero-days in Apple’s macOS and iOS (reported anonymously) have been released. The company said the flaws have been exploited in the wild. The vulnerabilities have been fixed in iOS and iPadOS 15.4.1, macOS Monterey 12.3.1,…
Another day, another zero-day. This time, security researchers discovered a bypass for an older zero-day, remote code execution flaw in the Spring Core framework, shortly after a proof-of-concept exploit was leaked to GitHub. Spring Core is a widely known Java…
A new proof-of-concept (PoC) code shows that attackers can remotely lock, unlock, and start Honda and Acura vehicles. This is possible due to a vulnerability in the remote keyless system, CVE-2022-27254, that impacts Honda Civic LX, EX, EX-L, Touring, Si,…
There’s a new SonicWall vulnerability, identified as CVE-2022-22274. The vulnerability is critical, and resides in multiple firewall appliances. If weaponized, remote threat actors could perform arbitrary code execution and cause a denial-of-service (DoS) condition. CVE-2022-22274 SonicWall Vulnerability: Technical Description According…
A critical security vulnerability in Sophos Firewall was just disclosed. CVE-2022-1040 Sophos Firewall Vulnerability Tracked as CVE-2022-1040, the vulnerability is an authentication bypass in the User Portal and webadmin that could allow attackers to perform remote code execution attacks. Affected…
If you’re one of those conscious users who acquaint themselves with the software before they install it onto their computers, Microsoft security updates included, then this article is for you. When you pay attention to the small print, and in…
Vulnerabilities, vendors and enterprises. The three words often come together, to the horror of all concerned sites. Enterprises often lack sufficient patch management policy and incident response groups, or disregard the importance of proper education on security-related subjects. Thus, the…
Do you play Elden Ring? Then note that security researchers disclosed a vulnerability in the game that traps players in an infinite death loop. Have You Been Trapped in an Elden Ring Death Loop? Reportedly, the latest version of the…
А recently discovered Redis vulnerability has been used in attacks against servers. According to the official advisory, Redis, a persistent key-value database, due to a packaging issue, is prone to a Debian-specific, Lua sandbox escape. Exploiting the vulnerability could result…
