Thursday , April 3 2025

infosecbulletin

AnyDesk confirms breach: Release late Friday advisory

Anydesk

AnyDesk, a German remote access software company, has confirmed that their production systems were compromised in a security incident. They have 170,000 customers worldwide, including Comcast and Thales. The company’s client logins were not working for three days. During this time, the company informed the customers about unexpected maintenance. According …

Read More »

Cloudflare Blog
Cloudflare hacked using auth tokens stolen in Okta attack

Cloudflare

Cloudflare disclosed that its internal Atlassian server was breached by a suspected ‘nation-state attacker’. The attacker gained access to Cloudflare’s Confluence wiki, Jira bug database, and Bitbucket source code management system. The attacker first accessed Cloudflare’s self-hosted Atlassian server on November 14, and then accessed the company’s Confluence and Jira …

Read More »

‘Synergia’ operation
INTERPOL-led operation targets growing cyber threats

Interpol

INTERPOL has found around 1,300 suspicious IP addresses and URLs worldwide. These were discovered during their operation against phishing, malware, and ransomware attacks. Operation Synergia was launched from September to November 2023 to address the increasing problem of transnational cybercrime and the need for coordinated action against new cyber threats. …

Read More »

Ivanti warns of a new actively exploited zero-day

Ivanti

Ivanti has issued a warning regarding two new high-severity vulnerabilities in its Connect Secure and Policy secure solutions, identified as CVE-2024-21888 (CVSS score: 8.8) and CVE-2024-21893 (CVSS score: 8.2) respectively. Furthermore, the company has alerted that one of these vulnerabilities is actively being exploited in the wild. The vulnerability CVE-2024-21888 …

Read More »

CISA Releases Eight Industrial Control Systems Advisories

CISA

CISA released 8 advisories about Industrial Control Systems (ICS) on January 30, 2024. They give up-to-date information on security issues, vulnerabilities, and exploits related to ICS. ICSA-24-030-01 Emerson Rosemount GC370XA, GC700XA, GC1500XA ICSA-24-030-02 Mitsubishi Electric FA Engineering Software Products ICSA-24-030-03 Mitsubishi Electric MELSEC WS Series Ethernet Interface Module ICSA-24-030-04 Hitron …

Read More »