An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Palo Alto’s Unit 42 researchers shed light on four emerging ransomware groups making the headlines this year. The discovery comes after an extensive research and analysis of the underground including web leak sites and fresh onion sites. These ransomware-as-a-service operators…
What are the threats endangering Linux systems? Security researchers from Trend Micro just released a report focused on the “pressing security issues including malware and vulnerabilities that compromise Linux systems in the first half of 2021.” Related: The Facefish Operation:…
Razor Squad Ransomware Security researchers have detected a new ransomware threat, currently targeting users worldwide. Called Razor Squad ransomware, or Razor Squad virus file, the threat sneaks into the computer system to encrypt all data and demand a ransom in…
Security researchers are reporting emails soliciting company insiders to install the Demon (Black Kingdom) ransomware on their organizations’ networks. Nigerian Threat Actor Behind the Campaign According to a report by Abnormal Security, a Nigerian threat actor is trying to recruit…
According to an alert released by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), cybercriminals are currently exploiting the so-called ProxyShell Microsoft Exchange vulnerabilities: CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207. CISA Warns against ProxyShell Attacks The agency’s strong advice is for organizations…
Checka Map (CheckAMap) Checka Map (CheckAMap), found at portal.checkamap.com, is a suspicious domain that may drop a browser extension or cause unwanted redirects. If you see it set as your default page, you may have been affected by a potentially…
C0v Virus File (Dharma Ransomware) A new iteration of the Dharma ransomware family has been detected in the wild. Appending the .c0v ([c0v1d19@job4u.com].c0v) file extension to encrypted file, the c0v cryptovirus will demand a ransom payment from you to allegedly…
There is a recently disclosed unpatched flaw in Fortinet’s web application firewall appliances. The vulnerability could be exploited by remotes authenticated attackers to execute malicious commands. Related: Top Exploited Vulnerabilities in 2020: Hackers Take Advantage of Remote Work In other…
Ufymmtjonc File Virus (Snatch Ransomware) If you see the .ufymmtjonc file extension appended to your files, then you have been infected by a new variant of the Snatch ransomware family. Snatch Ransomware will encrypt all types of files such as…
AdLoad is a well-known adware and bundleware loaders family which has been targeting macOS users since 2017, or even earlier. The threat installs a backdoor on the system to drop adware and potentially unwanted applications (PUAs), and also collects information.…
Stream Searchly is yet another browser hijacker promoting Searchlee.com, the well-known rogue search engine. If you see either portal.streamsearchly.com or searchlee.com set as your default page, you may have installed a potentially unwanted app (PUA). These apps sneak into the…
Facebook is rolling out optional end-to-end encryption for video and voice calls on Messenger, along with updates controls for disappearing messages. The new features are coming to address users’ expectations and needs for security and privacy, allowing users to be…
Heimdal security researchers were just informed about a new ransomware strain, signed by a group called DeepBlueMagic. Apparently, the new strain is rather complex, displaying innovative approaches in terms of its file encryption. The compromised device the researchers analyzed was…
A new nefarious information stealer has been detected in the wild. Dubbed Ficker and detected by the BlackBerry Research & Intelligence Team, the infostealer is sold and distributed on Russian underground forums by a hacker known as @ficker. The malware…
FortBridge security researchers recently achieved remote code execution and privilege escalation on cPanel, the popular web hosting control panel software, and WHM using a stored cross-site scripting (XSS) flaw. cPanel Flaws Discovered During Black-Box Pentest The team discovered multiple vulnerabilities…
Accenture is the latest victim of the LockBit ransomware gang. LockBit Ransomware Hits Accenture The cybercriminals recently posted the name and logo of the company, which is a global business consulting firm. As such, Accenture’s clients include 91 names of…
A new variant of the VoidCrypt ransomware family has been detected in the wild. Since the ransomware appends the .WIZOZ extension to encrypted files, users may call it WIZOZ virus (crypto virus). The ransomware creates a ransom note, called decrypt-info.txt…
Poly Network, a China-based cryptocurrency platform for exchanging tokens across multiple blockchains, was a victim of an attack due to a vulnerability in its system. As a result, the staggering amount of $611 million worth of cryptocurrency were siphoned from…
Microsoft’s August 2021 Patch Tuesday just rolled out, addressing 51 security vulnerabilities, including more Print Spooler issues, a zero-day, and seven critical flaws. Reports indicate that the zero-day, known under the CVE-2021-36948 advisory has been actively exploited in the wild.…
There’s a newly developed malware on the radar of security researchers who believe that it could be released into the wild soon. The malware, which is still under construction, is called Chaos and was spotted in underground ads where it…
