GhostR hacker claimed to hack Absolute Telecom PTE Ltd, a Singapore-based telecom company and stole 34 gigabytes of data including corporate information, accounting records, sales data, customer details, credit card information, and call records. In a post the bad actor claimed they infiltrated and compromised the company’s server networks on …
Read More »Bangladeshi online marketplace faced massive data leak
Bangladeshi online market place Travela.xyz for homestays and experiences, suffered a major data breach on June 9, 2024. The leaked information, found on a dark web hacking forum, exposed the personal data of the company’s hosts. The leaked data, which includes user information such as Host ID, First Name, Last …
Read More »SSRF Vulnerability Patched in Bitdefender GravityZone Console On-Premise
Bitdefender fixed a serious vulnerability (CVE-2024-4177, CVSS 8.1) in its GravityZone Console On-Premise product. This flaw, found by security researcher Nicolas Verdier (n1nj4sec), could enable attackers to carry out server-side request forgery (SSRF) attacks, possibly resulting in unauthorized access and data breaches. GravityZone Console is a security management platform by …
Read More »New York Times source code compromised using exposed GitHub token
The New York Times’ internal source code and data were leaked on the 4chan message board. The new work times confirmed to Bleeping Computer that they were stolen from the company’s GitHub repositories in January 2024. An anonymous user leaked internal data on Thursday. They posted a torrent containing a …
Read More »Bangladeshi “SuSastho.AI” for clinically validated answers
In Bangladesh, adolescent sexual and reproductive health, rights, and mental health (SRMH) issues are some of the major challenges due to societal taboos & stigma. To address these challenges, CMED Health has developed a Generative Artificial Intelligence (AI) engine called “SuSastho.AI” to make healthcare accessible at one’s fingertips. CMED Health …
Read More »Hacker offers 900GB of stolen data from Thai Telecom Firm
The cybercriminal “kiberphant0m” offer to sell an Asian telecom company data over 900GB on the underground forum called ‘xssforums’. The hacker offer to sell full root access and other administrative login credentials. Cloudsek reported, “The breach reportedly involves a telecom provider based in Thailand, marking the third successful attack by …
Read More »SOLARWINDS FIXED MULTIPLE FLAWS IN SERV-U
SolarWinds released updates to fix several security issues in Serv-U and the SolarWinds Platform. These vulnerabilities impact Platform 2024.1 SR 1 and older versions. The company fixed a security issue, known as CVE-2024-28996, reported by a penetration tester from NATO. NATO Communications and Information Agency pentester Nils Putnins discovered a …
Read More »ICT division’s myLocker User Information Available for Sale
Bad actor offer to sell myLocker, which offers a secure locker for documents in the cloud, user data on a dark web forum for $150 posing a threat to the Digital Bangladesh Program. MyLocker, an initiative of ICT division is a secure digital locker where citizens can store and share …
Read More »Cyber Battle Stand Off: BGD e-GOV CIRT 8th globally
An international cyber exercise taking place online as part of the Innovation Space at the St. Petersburg International Economic Forum (SPIEF). During Standoff, cyber security professionals from various countries will hone their skills to ensure robust protection for companies, industrial facilities, and entire sectors of the economy. Several teams from …
Read More »“Kori” digital bank to start operation in October
Kori Digital Bank’s Chairman Habibullah N Karim said, the bank will start its operation in October; it’s all preparatory work is going in full swing, we hope soon will get final license. He said, after getting LOI, we were working tirelessly to start the banking operation within the time span …
Read More »