An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
What Is Lmonopolic.com? Lmonopolic.com is a suspicious page that may try to get you to subscribe to its push notifications, with the promise to deliver the latest sports news. However, instead of receiving useful notifications, you will most likely be…
CVE-2022-24086 is a critical, zero-day security vulnerability affecting Adobe’s Commerce and Magento open-source products. The vulnerability, which has a CVSS score of 9.8 out of 10, is actively exploited in the wild in limited attacks. Fortunately, a patch is already…
What Is Remain Dark? Remain Dark is a browser extension that is designed to provide a dark theme for the pages you visit. However, the extension may turn out to be suspicious, and flood you with intrusive advertisements. The extension…
Security researchers have been observing an increasing exploitation of regsvr32.exe, which is a Windows living-off-the-land binary, shortly known as LOLBin. Some of the analyzed malware samples belong to Qbot and Lokibot, according to Uptycs researchers. Threat Actors Abusing Regsvr32 What…
What Is TopMoviesLinks TopMoviesLinks is a browser extension for Google Chrome, Mozilla Firefox and Microsoft Edge, which may change your default search provider. TopMoviesLinks doesn’t provide its own search functionality but instead links to Bing.com. This behavior is typical for…
What Is TravelNow? TravelNow is a new adware program currently being distributed online. If you don’t recall downloading such a program yourself, then it was included in the installer of a freeware you recently downloaded. Free programs are often bundled…
Currently, active campaigns against Android users are carrying FluBot and Medusa banking trojans. Both trojans are using the same distribution mechanism in a simultaneous attack campaign. The discovery comes from security researchers at ThreatFabric. Medusa and FluBot Trojans Working Together…
CVE-2022-24348 is a high-severity security vulnerability in Argo CD that could enable threat actors to access a victim’s application-development environments, making it possible to harvest passwords, API keys, tokens, among other sensitive details. CVE-2022-24348 in Argo CD Needs Immediate Patching…
What Is Twitch Explorer Twitch Explorer is classified as a potentially unwanted app (PUA), adware and browser hijacker that could trigger unwanted redirects and pop-up ads. The application promises to deliver “instant search” and access to the “most popular video…
According to an alert released by CISA (U.S. Cybersecurity and Infrastructure Agency), federal agencies should immediately address CVE-2022-21882, a Win32k Elevation of Privilege vulnerability. CVE-2022-21882 Elevation of Privilege Windows Vulnerability The Windows flaw could be exploited by threat actors to…
What Is Worldcoolfeed.com? Worldcoolfeed.com is a website that triggers push notifications and may cause redirects once you agree to receive them. The website is not malicious but it raises concerns as there is no telling to which pages it will…
Security researchers recently uncovered a malicious campaign using SEO poisoning to trick potential victims into downloading the BATLOADER malware. The attackers used created malicious sites packed with keywords of popular software products, and used search engine optimization poisoning to make…
Wormhole is the latest cryptocurrency platform to be hacked in a $322 million heist. Hackers successfully exploited a vulnerability in the platform and stole approximately $322 million worth of Ether. The attack occurred on February 2 and affected the Wormhole…
What Is B-cdn.net? B-cdn.net is a suspicious redirect and website that is reported to load the “Your McAfee Subscription Has Expired” pop-up scam. However, depending on the user’s geo location, other pop-up scams may be displayed, as well. An example…
At least 23 new security vulnerabilities were discovered in various implementations of UEFI (Unified Extensible Firmware Interface) firmware implemented by multiple vendors, such as HP, Lenovo, Juniper Networks, and Fujitsu. The flaws are located in Insyde Software’s InsydeH2O UEFI firmware,…
What Is Speedsafeinstallnational.rest? Speedsafeinstallnational.rest is a suspicious website that could trigger intrusive pop-ups and advertisements. The website could be associated with various online scams. Currently, it is known to display the following message: “You’ve made the 9.68-billionth search!” Congratulations! You…
Deadbolt ransomware recently compromised more than 3,600 QNAP network-attached storage (NAS) devices. As a result of the attack, all data located on the devices has been encrypted by Deadbolt, which is a new strain of ransomware. Deadbolt Ransomware Hits QNAP…
CVE-2021-44142 Samba Flaw CVE-2021-44142 is one of several vulnerabilities detected in Samba versions before 4.13.17. The vulnerability is related to an out-of-bounds heap read/write issue in the VFS module. This module, known as vfs_fruit, provides compatibility with Apple SMB clients.…
Security researcher Ryan Pickren recently discovered and reported to Apple a set of macOS vulnerabilities that exposed Safari browser. 4 New Zero-Days Reported to Apple The researcher’s hack “successfully gained unauthorized camera access by exploiting a series of issues with…
A new malicious campaign targeting Android users via a trojan app has been detected in the wild. The payload of the campaign is the Vultur trojan that harvests banking credentials, among other malicious activities. The culprit, a malicious two-factor authentication…
