InfoSecBulletin Cybersecurity for mankind
The ransomware actor–threat hunter relationship just got extremely personal.
The BlackCat gang decided to add the professional reputations of the Western Digital cyber-incident response team to the hit list when it hacked into its early morning videoconference convened to discuss the recent ransomware attack against the company. The ransomware group then posted a screen capture of the meeting online.
The response team meeting image, with faces blurred, was shared by cyber researcher Dominic Alvieri on Twitter. Alvieri called the meeting leak a “black eye for Western Digital,” in his tweet.
Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass
By infosecbulletin
/ Friday , January 24 2025
An exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting...
Read More
CISA Releases 6 ICS Advisories Detailing Security Issues
By infosecbulletin
/ Friday , January 24 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released 6 advisories for Industrial Control Systems (ICS), highlighting vulnerabilities in various...
Read More
Account Credentials for Security Vendors Found on Dark Web: Cyble Report
By infosecbulletin
/ Thursday , January 23 2025
# "While many leaked security credentials belong to customers, some exposed sensitive accounts suggest that security vendors too have been...
Read More
Four Critical Ivanti CSA Vulnerabilities Exploited: CISA , FBI warns
By infosecbulletin
/ Thursday , January 23 2025
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory...
Read More
GitLab Releases Patch (CVE-2025-0314) for XSS Exploit
By infosecbulletin
/ Thursday , January 23 2025
GitLab has released update for high severity cross-site scripting (XSS) flaw. Versions 17.8.1, 17.7.3, and 17.6.4 for both Community Edition...
Read More
CVE-2025-20156
Cisco Fixes Meeting Management Allowing Privilege Escalation
By infosecbulletin
/ Thursday , January 23 2025
Cisco has released a security advisory concerning a critical privilege escalation vulnerability (CVE-2025-20156) in its Meeting Management software. With a...
Read More
Delay patching leaves about 50,000 Fortinet firewalls to zero-day attack
By infosecbulletin
/ Wednesday , January 22 2025
Fortinet customers must apply the latest updates, as almost 50,000 management interfaces remain vulnerable to the latest zero-day exploit. The...
Read More
Daily Security Update Dated: 21.01.2025
By infosecbulletin
/ Tuesday , January 21 2025
Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so...
Read More
126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems
By infosecbulletin
/ Tuesday , January 21 2025
Ubuntu 22.04 LTS users are advised to update their systems right away due to a crucial security patch from Canonical...
Read More
CERT-UA alerts about “security audit” requests through AnyDesk
By infosecbulletin
/ Tuesday , January 21 2025
Attackers are pretending to be Ukraine's Computer Emergency Response Team (CERT-UA) using AnyDesk to access target computers. “Unidentified individuals are...
Read More
Along with the image of the team meeting, BlackCat added a caption sarcastically referring to the team as “the finest threat hunters Western Digital has to offer.”
Western Digital, a digital storage device manufacturer, reported that its systems were compromised on March 26. According to reports, the company was negotiating an eight-figure ransomware payment.
