A threat actor has announced selling a 0day vulnerability for Dahua cameras. The bad actor claimed this vulnerability supposedly works with all versions of the device. The threat actor announced the vulnerability allowed unrestricted access and control of the camera and describing it as a Remote Code Execution (RCE) exploit. …
Read More »Criminals impersonating CISA’s employees in phone calls
CISA warned that criminals are pretending to be its employees in phone calls in order to trick people into sending them money. “The Cybersecurity and Infrastructure Security Agency (CISA) is aware of recent impersonation scammers claiming to represent the agency,” CISA warned on Wednesday. “As a reminder, CISA staff will …
Read More »Hackers breached 20,000 FortiGate systems worldwide: MIVD
The Dutch military security service MIVD recently revealed that a cyber espionage campaign, which was initially mentioned in February, managed to gain access to around 20,000 Fortigate-secured systems between 2022 and 2023. It is now believed that this campaign “appears to be much more extensive than previously known”. The Nationaal Cyber Security …
Read More »Riskiest Connected Devices in 2024: Forescout Report
By 2028, there will be over 25 billion Internet of Things (IoT) devices. Attackers are increasingly targeting various devices, operating systems, and firmware to gain access. Forescout Technologies, a cybersecurity leader, has released a report called “The Riskiest Connected Devices in 2024.” The report is based on data from 19 million …
Read More »Singapore-Based Absolute Telecom Allegedly Hit by Cyberattack
GhostR hacker claimed to hack Absolute Telecom PTE Ltd, a Singapore-based telecom company and stole 34 gigabytes of data including corporate information, accounting records, sales data, customer details, credit card information, and call records. In a post the bad actor claimed they infiltrated and compromised the company’s server networks on …
Read More »Bangladeshi online marketplace faced massive data leak
Bangladeshi online market place Travela.xyz for homestays and experiences, suffered a major data breach on June 9, 2024. The leaked information, found on a dark web hacking forum, exposed the personal data of the company’s hosts. The leaked data, which includes user information such as Host ID, First Name, Last …
Read More »Hacker offers 900GB of stolen data from Thai Telecom Firm
The cybercriminal “kiberphant0m” offer to sell an Asian telecom company data over 900GB on the underground forum called ‘xssforums’. The hacker offer to sell full root access and other administrative login credentials. Cloudsek reported, “The breach reportedly involves a telecom provider based in Thailand, marking the third successful attack by …
Read More »ICT division’s myLocker User Information Available for Sale
Bad actor offer to sell myLocker, which offers a secure locker for documents in the cloud, user data on a dark web forum for $150 posing a threat to the Digital Bangladesh Program. MyLocker, an initiative of ICT division is a secure digital locker where citizens can store and share …
Read More »Hacker Claim to Have Leaked Facebook User Database (2024)
Bad actor claimed to have leaked a database of Facebook users from 2024. The database has 100,000 lines of data with names, profiles, emails, phone numbers, registration dates, and locations. If the claim is true, users are at risk due to the leak. They might be victims of identity theft, …
Read More »361 Million Unique Email Credentials Leaked On Telegram
A big data breach was found with a combolist containing 122GB of data containing 361 million unique email addresses taken from thousands of Telegram channels. The dataset contains passwords and websites linked to them. It reveals a lot of new data that has been added to the breach alert service …
Read More »
InfoSecBulletin Cybersecurity for mankind