Wednesday , April 2 2025

infosecbulletin

Russian hacktivist group targets India’s health ministry

A Russian hacktivist group has claimed to have breached the health management information system of India, which could contain the health data of millions of Indian citizens. “On 15 March 2023, CloudSek’s contextual AI digital risk platform XVigil discovered a threat actor group claiming to have targeted an Indian government website,” cybersecurity …

Read More »

China draft law to require ‘security assessment’ for new AI products

All new artificial intelligence (AI) products developed in China will be required to undergo a “security assessment” before being released to the public, a sweeping new draft law by the country’s internet regulator showed on Tuesday. “Before providing services to the public that use generative AI products, a security assessment …

Read More »

Google New Initiative to Reduce the Risk of Zero-Day Vulnerabilities

Charley Snyder, the Head of Security Policy at Google, has posted a new initiative that will eliminate the risk of vulnerabilities and protect security researchers. In his post, he mentioned, “The security industry has improved in many ways, both in technological advances and collaboration, but many challenges remain, especially within …

Read More »

Hacker group brings down Israeli postal, banking and telecoms websites

A hacker group attacked the websites of Israel’s national mail service and major banks Friday, briefly bringing them down in an assault seemingly timed to coincide with a day of Iranian-promoted anti-Israel events. The attack was quickly squelched, authorities said, with apparently no significant harm or data leaks, though the …

Read More »

Critical Vulnerability in Hikvision Storage Solutions Exposes Video Security DataCritical Vulnerability in Hikvision Storage Solutions Exposes Video Security Dataz

Video surveillance giant Hikvision this week informed customers that it has patched a critical vulnerability affecting its Hybrid SAN and cluster storage products. The vulnerability, tracked as CVE-2023-28808, has been described by the vendor as an access control issue that can be exploited to obtain administrator permissions by sending specially crafted messages …

Read More »

Pakistan-Aligned Hackers Disrupt Indian Education Sector

The threat actor known as APT36 or Transparent Tribe has been observed targeting the education sector in India with malicious Office documents distributing Crimson RAT. The group has been active since at least 2013, but according to a new advisory by SentinelOne, it is now shifting from attacking Indian military and government personnel …

Read More »

European Data Protection Board Creates Task Force to Investigate ChatGPT

On Thursday, the European Data Protection Board (EDPB)announced that it had established a task force on ChatGPT, a potentially significant first step towards a uniform policy on setting privacy regulations for artificial intelligence. “The EDPB decided to launch a dedicated task force to foster cooperation and to exchange information on possible enforcement …

Read More »

US, India and China Most Targeted in DDoS Attacks, StormWall Q1 2023 Report

StormWall projects a 170% increase in DDoS Attacks by the end of 2023 and urges businesses to implement mitigation strategies. Leading cybersecurity provider, StormWall, has released a comprehensive report on the state of Distributed Denial of Service attacks (DDoS attacks) in Q1 2023. The report, based on an analysis of …

Read More »