Thursday , April 3 2025

infosecbulletin

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities

Apple on Thursday released security updates for its operating systems to patch dozens of vulnerabilities that could expose iPhones and Macs to hacker attacks, including three zero-days affecting the WebKit browser engine. Two of the actively exploited vulnerabilities, CVE-2023-28204 and CVE-2023-32373, have been reported to the tech giant by an …

Read More »

US Offering $10M Reward for Russian Man? Who?

Mikhail Pavlovich Matveev, a 30-year-old Russian national, has been charged by the US Justice Department for his alleged role in numerous ransomware attacks, including ones targeting critical infrastructure.  Matveev — known online as Wazawaka, m1x, Boriselcin, and Uhodiransomwar — has been charged with conspiring to transmit ransom demands, conspiring to …

Read More »

Daily Cybersecurity Roundup, May-17, 2023

Another day, another new round of supply chain attacks launched via malicious Python packages. Researchers observed over 30 new malicious PyPI packages, some of which were designed to credit card details, crypto wallet information, and login credentials. Moving on, a concerning development in BEC attacks has emerged; scammers are adopting a …

Read More »

Indian CERT Issues Alert on Vulnerabilities in VMware, Patches Issued

The Indian Computer Emergency Response Team (CERT-IN) has issued an alert on vulnerabilities in VMware Aria Operations. Versions of VMware Aria Operations prior to 8.12 are vulnerable to cyberattacks due to the high-severity vulnerabilities published in the CERT-IN vulnerability note CIVN-2023-1032, with a severity rating of High. VMware has issued patches for …

Read More »

North Korean Hackers Stole Japan’s $721M Worth Crypto: Report | Coingape

North Korean hackers have stolen $721 million from Japan since 2017, accounting for 30% of the crypto thefts worldwide. According to a study by a U.K.-based compliance specialist, North Korea employs hacking and ransomware to steal crypto assets, especially in Japan, Vietnam and Hong Kong, the leading Asian crypto hubs. North Korean Hackers Eye …

Read More »

CISA alarms of critical Ruckus bug used to infect Wi-Fi access points

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today of a critical remote code execution (RCE) flaw in the Ruckus Wireless Admin panel actively exploited by a recently discovered DDoS botnet. While this security bug (CVE-2023-25717) was addressed in early February, many owners are likely yet to patch their …

Read More »

SmartCom Limited strategic partner for Infopercept in BD

Infopercept, a global cybersecurity solutions and services company announced today that it has signed a strategic distribution agreement with SmartCom Limited. Under this agreement, SmartCom Limited will be providing Infopercept’s Invinsense cybersecurity solutions and managed services to the organizations of Bangladesh. Invinsense is a cybersecurity platform that covers offensive security …

Read More »