CrowdStrike has issued security updates for two vulnerabilities in its Falcon Sensor for Windows, CVE-2025-42701 and CVE-2025-42706. These flaws require local code execution and may let attackers delete files, which could affect system stability and security monitoring. Vulnerabilities found through CrowdStrike’s Bug Bounty program reflect their proactive security efforts. There’s …
Read More »SonicWall Confirms Hackers Access All Cloud Firewall Backups
After its investigation in collaboration with leading IR Firm, Mandiant into the scope of a recent cloud backup security incident, SonicWall confirm that an unauthorized party accessed firewall configuration backup files for all customers who have used SonicWall’s cloud backup service. The files contain encrypted credentials and configuration data; while …
Read More »All airports in Bangladesh are on alert amid cyber attack
A special alert has been issued at all international and domestic airports in Bangladesh due to the threat of cyber attacks. At the same time, 10 special instructions have been given to the airports. A letter of this instruction, signed by Air Commodore Abu Sayeed Mehboob Khan, Member (Planning and …
Read More »IBM fixed multiple vulns in its products, including critical one
IBM has issued fixes for three security vulnerabilities in its IBM Security Verify Access and IBM Verify Identity Access products. These issues could permit privilege escalation, command execution, and script injection. Customers are urged to install these patches right away to avoid exploitation in production environments. CVE-2025-36355 lets authenticated users …
Read More »Oracle released patch for E business suite (CVE-2025-61882) after Cl0p attack
Oracle has issued an emergency update to fix a serious security issue in its E-Business Suite, which has been targeted in recent Cl0p data theft attacks. The critical vulnerability, CVE-2025-61882 (CVSS score: 9.8), could let an unauthenticated attacker with HTTP access compromise the Oracle Concurrent Processing component. “This vulnerability is …
Read More »Hackers exploited Zimbra flaw as zero-day using iCalendar files
Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. ICS files, or iCalendar files, store plain text calendar information, like meetings and events, and allow exchange between different calendar apps. Threat actors …
Read More »500% surge in scans targeting Palo Alto Networks login portals
On October 3, 2025, GreyNoise noted a 500% increase in scans aimed at Palo Alto Networks login portals, the highest activity level in three months. Researchers found that more than 1,285 IPs scanned Palo Alto portals, an increase from the typical 200. They noted that 93% of these IPs were …
Read More »Cl0p Ransomware Targets Oracle in $50M Extortion Threat
Researchers at Google Mandiant and GTIG are monitoring a suspected Cl0p ransomware affiliate conducting a mass extortion campaign against Oracle E-Business Suite customers. The attackers allege they have stolen sensitive corporate data and are demanding ransoms up to $50 million, as reported by the incident response firm Halcyon, which is …
Read More »Alert: Self-Propagating Malware Spreading Via WhatsApp
Trendâ„¢ Research is investigating a malware campaign that uses WhatsApp to infect users. This attack is focused on spreading quickly and taking advantage of social trust, rather than theft or ransomware. It’s called SORVEPOTEL and is currently most active in Brazil. The campaign is dubbed SORVEPOTEL by Trend Micro that …
Read More »Splunk Fixes Six Flaws, Including SSRF and XSS Vulns in Enterprise Platform
Splunk issued security advisories for six vulnerabilities in Splunk Enterprise and Splunk Cloud Platform, with severity levels from medium to high. The issues include improper access control, various cross-site scripting (XSS) types, XML external entity (XXE) injection, denial-of-service (DoS) via LDAP misuse, and a high-severity server-side request forgery (SSRF). CVE-2025-20366 …
Read More »
InfoSecBulletin Cybersecurity for mankind