Tuesday , December 24 2024

infosecbulletin

Kaspersky report
Bangladesh faces over 34,000 ransomware attacks

Ransomware

Antivirus manufacturer Kaspersky inform that it has detected over 34,000 ransomware attacks targeting various organizations in Bangladesh from January to December 2023 in a press release. Fedor Sinitsyn, Kaspersky’s lead malware analyst said, Several ransomware groups are still stealing data and encrypting it and demanding a ransom. This problem is …

Read More »

FortiOS & FortiProxy SSL-VPN Flaw Allows IP Spoofing

fortinet

A vulnerability has been discovered in Fortinet’s FortiOS SSL-VPN and FortiProxy SSL-VPN. The flaw is identified as FG-23-225 which allows attackers to spoof IP addresses and bypass security controls by sending specially crafted packets. According to the advisory published by Fortinet, An insufficient verification of data authenticity vulnerability [CWE-345] in …

Read More »

ALERT
CISA Releases Four Industrial Control Systems Advisories

ics

On Tuesday (May 14), CISA released four Industrial Control Systems (ICS) advisories which provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-135-01 Rockwell Automation FactoryTalk Remote Access ICSA-24-135-02 SUBNET PowerSYSTEM Center ICSA-24-135-03 Johnson Controls Software House C-CURE 9000 ICSA-24-135-04 Mitsubishi Electric Multiple FA Engineering Software Products …

Read More »

Microsoft May 2024 Patch Tuesday fixes 61 flaws 2 zero-days

patch tuesday

Microsoft patched May 2024 Tuesday including updates for 61 flaws and three publicly disclosed zero days. This update fixed Microsoft SharePoint Server Remote Code Execution Vulnerability. Category wise vulnerabilities are listed below: 17 Elevation of Privilege Vulnerabilities 2 Security Feature Bypass Vulnerabilities 27 Remote Code Execution Vulnerabilities 7 Information Disclosure …

Read More »

TechCrunch report
Indian gov.t sites compromised to plant online betting ads

online bating

Indian government websites have been used by scammers to place ads that send visitors to online betting sites. TechCrunch found about 50 “gov.in” website links from Indian states like Bihar, Goa, Karnataka, Kerala, Mizoram, and Telangana that were sending visitors to online betting sites. Some of these websites belong to …

Read More »

Damage Costs Predicted To Exceed $265 Billion By 2031
Ransomware expected to attack every 2 seconds by 2031

Ransomware

Ransomware damage costs are predicted to exceed $265 billion by 2031, and it is expected to be the fastest growing type of cybercrime, affecting a business, consumer, or device every 2 seconds by that year, according to Cybersecurity Ventures. A report from Cybersecurity Ventures predicted that ransomware damages would increase …

Read More »