CISA has released three Industrial Control Systems (ICS) advisories on July 6, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for technical details and mitigations: ICSA-23-187-01 PiiGAB M-Bus ICSA-23-187-02 ABUS TVIP …
Read More »Google Patches 46 Android Vulnerabilities, Including 3 Actively Exploited
Google has released its monthly security updates for the Android operating system, addressing 46 new software vulnerabilities. Three of these vulnerabilities have been identified as actively exploited in targeted attacks. One vulnerability, tracked as CVE-2023-26083, is a memory leak flaw affecting the Arm Mali GPU driver for Bifrost, Avalon, and …
Read More »Meeting on space planning held at BSMRAAU
An impactful review meeting focusing on model rocketry, cube satellites, and NASA’s lunar satellite projects held on Thursday (July 6th) at Bangabandhu Sheikh Mujibur Rahman Aviation and Aerospace University (BSMRAAU) The event, jointly organized by the Aspire to Innovate (a2i) Programme of the ICT Division and Bangabandhu Sheikh Mujibur Rahman …
Read More »Twitter threatens legal action over Threads app
Twitter is considering legal action against Meta over its fast-growing rival app Threads. Threads, which was launched to millions on Wednesday, is similar to Twitter and has been pitched by Meta bosses as a “friendly” alternative. Twitter’s Elon Musk said “competition is fine, cheating is not” – but Meta denied …
Read More »BDSec CTF 2023 calling you, Registration opens
Calling all cyber enthusiasts! BDSec CTF 2023 is an international CTF competition that will put your hacking skills to the test. Compete against top teams from around the world and showcase your skills on a global stage. The registration for the competition has been opened. Click here to get registration. …
Read More »Cisco Switch Bug Could Put Encrypted Traffic at Risk
A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic. This vulnerability is due to an issue with the implementation of the ciphers that are used by …
Read More »Microsoft Teams exploiting tool on GitHub, What Microsoft say?
A new tool is available on GitHub that gives attackers a way to leverage a recently disclosed vulnerability in Microsoft Teams and automatically deliver malicious files to targeted Teams users in an organization. The tool, dubbed “TeamsPhisher,” works in environments where an organization allows communications between its internal Teams users …
Read More »Policy changed, Google now use your data for AI training
Google has made changes to its privacy policy, allowing the use of public data to enhance its artificial intelligence products, including Bard. As of July 1st, the updated policy states that Google utilizes information to improve services, develop new products, and advance technologies that benefit users and the general public. …
Read More »India’s health sector 2nd targeted industry by cybercriminals
Tenable says, the recent surge in cyber attacks on Indian hospitals is raising alarming concerns about the safety of healthcare and personal data. This pressing issue was brought into the limelight following the recent breach of the CoWIN portal, India’s primary platform for COVID-19 vaccine distribution, according to a report by Tenable. The …
Read More »17 Million Instagram Accounts, 178 GB of TikTok, and Yahoo Databases Exposed
SOCRadar, a cybersecurity firm, has identified several significant database leaks, involving popular social media platforms like TikTok, Instagram, and Yahoo!. The leaked data from these platforms has surfaced on the dark web, raising concerns about user privacy and security. In the case of TikTok, SOCRadar’s Dark Web Team has detected …
Read More »