An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A new vulnerability exists in the official Homebrew Cask repository, a free, open-source software package manager allowing the installation of apps on macOS and Linux. The security flaw was discovered on 18th of April in Cask’s review-cask-pr GitHub Action used…
One of the latest trends in the cybercrime field is exploiting QR codes, a new Ivanti research reveals. “While this may fly under the radar of many IT operations and security teams, consumer-based QR codes pose many security threats to…
One of Apple’s key suppliers, Quanta Computer Inc, has been fighting a high-profile ransomware attack. The attack took place while Apple was revealing its newest line of iPads and iMacs, Bloomberg recently reported. Sodinokibi/REvil Threat Actors Hit Quanta, a Key…
CVE-2021-22893 is classified as a critical zero-day in Pulse Secure VPN devices, and it has been exploited by nation-state hackers in attacks against US defense, finance, and government targets. Attacks against European targets have also been observed, according to a…
Do you experience intrusive, unwanted pop-up ads in your browser? If so, you may have a potentially unwanted program attached to your browser. ConfigProgress is one of the latest such programs detected in the wild. What Is ConfigProgress? ConfigProgress is…
Google just released an extensive Chrome update fixing seven vulnerabilities, one of which a zero-day. The zero-day is tracked as CVE-2021-21224, and exploits for it exist in the wild. You should check whether you are running the latest version of…
Is Ngthatwe.fun a Virus? Are you trying to get rid of push notifications coming from ngthatwe.fun? The ngthatwe.fun website may seem useful with its promise to keep you updated with the latest sport news. However, agreeing to receive push notifications…
HackBoss Infostealer Malware: What Is It? HackBoss is a piece of malware that falls into the category of information stealers and trojans, targeting cryptocurrency wallets and transactions. According to security researchers, the HackBoss malware has made its operators significant amount…
In March, 2021, Sentinel Labs researchers became aware of a trojanized Xcode project targeting iOS developers. The project was a malicious version of a legitimate, open-source project available on GitHub, enabling iOS programmers to use several advanced features for animating…
According to a new CISA security advisory, several vulnerabilities exist in the OpENer EtherNet/IP that could lead to denial-of-service attacks, remote code execution, and data leaks against industrial systems. Versions of OpENer released before February 10, 2021 are exposed to…
Are your browsers redirecting you to a page called bengekoo.com? The bengekoo site is known for its push notifications that may trigger multiple redirects to other suspicious pages. Though not directly malicious, such redirects are often associated with adware and…
Remember the slew of vulnerabilities putting Microsoft Exchange servers at risk of various attacks? ProxyLogon Vulnerabilities Used in Cryptojacking Attacks Now another danger should be added to the threat list – cryptojacking also known as cryptocurrency mining. SophosLabs researchers discovered…
How safe are your applications, and how secure are you while using them? Multiple One-Click Bugs in Popular Applications Security researchers reported the abundance of one-click vulnerabilities in multiple popular software apps, allowing threat actors to perform arbitrary code execution…
This month’s Patch Tuesday fixes 110 security vulnerabilities, 19 of which are classified as critical, 88 important, and one under active exploitation. Five of the vulnerabilities are zero-days. CVE-2021-28310 Under Active Exploitation CVE-2021-28310, the vulnerability under attack, is a Win32k…
“On 13th of April 2021, SAP Security Patch Day saw the release of 14 Security Notes,” the most dangerous of which affects its Business Client product. The SAP Business Client Bug The vulnerability resides in the Business Client product, which…
Cracked software is not safe to use, and there are plenty of examples to prove that. Hackers often utilize cracked copies of legitimate programs to spread malware. By downloading the program, the user may also get a trojan horse, backdoor,…
Adobe recently released patches addressing four critical vulnerabilities in Adobe Bridge, and several other flaws in Adobe Digital Editions, Photoshop and RoboHelp. The April update contains all the necessary patches that need to be applied as soon as possible. Fortunately,…
What Is Wsoyourwi.fun? Are you seeing unwanted pop-ups stemming from the Wsoyourwi.fun website? You should know that Wsoyourwi.fun is a suspicious domain designed to generate push notifications and pop-up ads. It may look like a website for sport updates (“Get…
Jormungand Ransomware (.glock Virus File) Jormungand is the name of a new ransomware discovered by security researcher dnwls0719. The ransomware operates like a typical cryptovirus, first encrypting the victim’s data and then demanding a ransom to be paid to allegedly…
Indian security researcher Rajvardhan Agarwal recently published a proof-of-concept code for a brand new vulnerability affecting Google Chrome, Microsoft Edge, Brave, and Opera (all Chromium-based). The vulnerability resides in the V8 JavaScript engine, and it’s most likely the same flaw,…
