Wednesday , December 25 2024

infosecbulletin

Trend Micro Unleashes the Power of Generative AI in Vision One Platform

Trend Micro, a leading cybersecurity provider, has been incorporating artificial intelligence (AI) into its solutions for the past decade. However, it has now embraced the power of generative AI. The company recently unveiled its Vision One platform, which integrates various cybersecurity capabilities such as extended detection and response (XDR), attack …

Read More »

LockBit Ransomware Extorts $91 Million from U.S. Companies

The LockBit ransomware gang has been active since at least January 2020, and has launched roughly 1,700 attacks in the United States, resulting in approximately $91 million in ransom payments. The gang operates under the Ransomware-as-a-Service (RaaS) model, which allows affiliates to use the malware and its infrastructure to target …

Read More »

Delinea’s customer meetup at Dhaka, promising quality services

Delinea is a leading provider of privileged access management (PAM) solutions that make security seamless for the modern, hybrid enterprise. Its solutions empower organizations to secure critical data, devices, code, and cloud infrastructure to help reduce risk, ensure compliance, and simplify security. Delinea removes complexity and defines the boundaries of …

Read More »

Mandiant Warns of VMware ESXi Zero-Day exploiting

vmware

Mandiant, a prominent cybersecurity firm now part of google cloud, has uncovered the activities of UNC3886, a Chinese cyberespionage group that has been actively exploiting a zero-day vulnerability in VMware ESXi. This vulnerability allows the group to escalate privileges on guest virtual machines, gaining unauthorized access and control. The initial …

Read More »

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks

Fortinet on Monday warned customers that a recently patched vulnerability, tracked as CVE-2023-27997, could be a zero-day flaw that has been exploited in limited attacks. The vulnerability, which is a critical heap-based buffer overflow in the SSL-VPN module, can allow a remote hacker to execute arbitrary code or commands using …

Read More »

Microsoft Warns of AitM Phishing Attacks Against Financial Organizations

A newly discovered multi-stage Adversary-in-the-Middle (AitM) phishing and BEC attack campaign has been targeting banking and financial organizations. According to Microsoft, the attack originated from a compromised trusted vendor and transitioned to a series of AitM and BEC attacks. During this period, the attackers abused the trusted relationship between vendors, …

Read More »

Indian CoWIN health database leaked: How safe “Surokkha” in Bangladesh

Several Indian media report that a massive data breach of the CoWIN portal (The central platform for COVID-19 vaccination registration in India) had happened. For this breach media report one billion Indian citizens’ data is at risk. This data leak has also exposed the Aadhaar card, Voter ID, and PAN …

Read More »

“Pratya” hack facebook with attractive ads, Police arrest

Luscious advertisements such as ‘Lakh Tucker Jackpot’ or ‘Million Dollar Lottery’ were given on Facebook. And if you click on that link, your Facebook account will be activated. After that, the hacker used to extort money from the victim by talking about recovering that account. The Mirpur Thana police gave …

Read More »