Thursday , April 3 2025

infosecbulletin

Microsoft to limit access 50 cloud services for Russia: TASS

flag

Microsoft to restrict access to 50 of its cloud products in Russia, as reported by the Russian company Softline. The restrictions will also affect local software, with the deactivation of license keys. Russian media TASS reported the list primarily includes corporate applications such as those for business management, accounting, automation, …

Read More »

Microsoft releases emergency fix for Windows Server crashes

Windows server

Microsoft released urgent updates to fix a problem causing Windows domain controllers to crash after installing the March 2024 Windows Server security updates. Microsoft released the following emergency Windows Server cumulative updates that should fix the LSASS memory leak and prevent impacted servers from crashing and restarting: KB5037422 (Windows Server …

Read More »

29 0-days Uncovered : Hackers Earned $1,132,500 at Pwn2Own

pwn2own

Pwn2Own Vancouver 2024 hacking competition is over. Hackers earned $1,132,500 for showing 29 unique zero-days. Participants in the Pwn2Own Vancouver 2024 hacking competition earned $1,132,500 for demonstrating 29 unique zero-days. On the first day, Team Synacktiv successfully demonstrated exploits against a Tesla car. The researcher Manfred Paul (@_manfp) won the …

Read More »

Investigation committee formed
Justin Trudeau’s birth place Pabna, Bangladesh; Birth certificate issued

Justin Trudeau, Prime Minister of Canada

Justin Trudeau is the current Prime Minister of Canada but according to a recently issued birth certificate his birth place is in Pabna. Surprising but true ‍such an birth certificate has been issued by Ahmedpur Union Parishad in Pabna. As shown in the birth certificate, name is Justin Trudeau, father- …

Read More »

PentesterVibe: A Bangladeshi Platform to hone Pentest Skills

PentesterVive

The journey to mastering penetration testing can be challenging for those interested in security. Besides theoretical knowledge, practical experience is essential to improve your skills and become a skilled pentester. PentesterVibe is a subscription-based service that helps bridge this gap by providing the necessary knowledge and resources to excel in …

Read More »

A project taken
By June 2026, Dhaka to see eco-friendly electric buses, Cars

Electric car

A project has been taken to introduce eco-friendly electric transport in Dhaka. The Road Transport and Highways Department, Bangladesh Road Transport Authority, Department of Environment, and Bangladesh Road Transport Corporation will set up an experimental charging station in Dhaka city. The project will be implemented from now until June 2026. …

Read More »

Hacker exploiting ScreenConnect, F5 bugs : Mandiant

hacker

Hacker allegedly exploiting two popular vulnerabilities to attack U.S. defense contractors, U.K. government entities and institutions in Asia, according to new report by Google owned security firm Mandiant. The report focused on UNC5174, a threat actor. According to Mandiant, UNC5174 used to be a member of Chinese hacktivist groups. However, …

Read More »

CISA, FBI, and MS-ISAC Release Joint Guidance on DDoS

cisa

CISA, FBI, and MS-ISAC updated a guide to help organizations defend against DDoS attacks. The guidance now includes detailed insight into three different types of DDoS techniques: Volumetric, attacks aiming to consume available bandwidth. Protocol, attacks which exploit vulnerabilities in network protocols. Application, attacks targeting vulnerabilities in specific applications or …

Read More »

Exploit released for Fortinet RCE bug used in attacks, patch now it

fortinet

Security researchers created a demonstration of a critical flaw in Fortinet’s FortiClient Enterprise Management Server (EMS) software. The security flaw CVE-2023-48788 is an SQL injection in the DB2 Administration Server (DAS) discovered and reported by the UK’s National Cyber Security Centre (NCSC). It impacts FortiClient EMS versions 7.0 (7.0.1-7.0.10) and …

Read More »