A scam campaign linked to an unknown threat actor is using an email routing misconfiguration in Proofpoint’s defenses to send millions of fake emails pretending to be from companies like Best Buy, IBM, Nike, and Walt Disney. Guardio Labs named the campaign EchoSpoofing. It started in January 2024. The threat …

VPN usage in Bangladesh has surged due to violent protests and government-imposed internet restrictions. In Bangladesh, there was a conflict for quota in the government jobs taking place on July 15 and resulted in many students getting hurt and at least five people being killed. The police tried to stop …

Cisco has issued a security advisory (CVE-2024-3596) in the RADIUS protocol, which is widely used for network access authentication and authorization. This vulnerability could let an attacker bypass multi-factor authentication (MFA) and gain unauthorized network access. The vulnerability is due to a problem in the MD5 Response Authenticator signature in …

The Reserve Bank of India fined Visa 24.1 million rupees (nearly $288,000) for using an unauthorized payment transfer system. The central bank made this announcement on Friday (July 26). “It was discovered that the entity (Visa) had implemented a payment authentication solution without regulatory clearance from the RBI,” the central …

Stress test gauged how banks would respond to and recover from severe but plausible cybersecurity incident 109 banks tested, of which 28 underwent more extensive testing Results to feed into ECB’s 2024 Supervisory Review and Evaluation Process The European Central Bank (ECB) is set to conduct its first thematic stress …

Risk of cyber attack, the country’s main stock market Dhaka Stock Exchange (DSE) and Chittagong stock exchange (CSE) website is closed. It is reported that it is not possible to access the DSE website as the website has been closed since Friday (July 26) morning. Acting Managing Director (MD) of …

Google fixed a bug in Chrome’s Password Manager that caused user credentials to vanish temporarily. A problem with Google Chrome’s Password Manager caused an 18-hour outage on Wednesday. This affected users who use the tool to save and automatically fill in their passwords. Many users said they couldn’t find their …

India’s Communications Minister Chandra Sekhar Pemmasani confirmed a breach at the state-owned telecom operator BSNL on May 20 during a session in the Lok Sabha on July 24. The Minister provided this information in a written response to a question from Congress MP Amar Singh. CERT-In, India’s national agency for …

Malware based threats increased by 30% in the first half of 2024 compared to the same period in 2023, according to SonicWall’s 2024 Mid-Year Cyber Threat Report. Malware attacks increased significantly from March to May, with a 92% year-on-year increase in May. The firm also observed an average of 526 …

A new critical vulnerability in the Domain Name System (DNS) has been found. This vulnerability allows a specialized attack called “TuDoor” that can poison DNS caches, cause denial-of-service (DoS) attacks, and deplete resources, posing a significant threat to internet security. Specialists have conducted experiments that confirm the feasibility of the …