ALERT
CISA issued Seventeen Industrial Control Systems Advisories

infosecbulletin Friday , May 17 2024 Alert

CISA issued seventeen advisories about Industrial Control Systems (ICS) on May 16, 2024. These advisories give important information about security problems, weaknesses, and attacks related to ICS.

ICSA-24-137-01 Siemens Parasolid
ICSA-24-137-02 Siemens SICAM Products
ICSA-24-137-03 Siemens Teamcenter Visualization and JT2Go
ICSA-24-137-04 Siemens Polarion ALM
ICSA-24-137-05 Siemens Simcenter Nastran
ICSA-24-137-06 Siemens SIMATIC CN 4100 Before V3.0
ICSA-24-137-07 Siemens SIMATIC RTLS Locating Manager
ICSA-24-137-08 Siemens PS/IGES Parasolid Translator Component
ICSA-24-137-09 Siemens Solid Edge
ICSA-24-137-10 Siemens RUGGEDCOM CROSSBOW
ICSA-24-137-11 Siemens RUGGEDCOM APE1808
ICSA-24-137-12 Siemens Desigo Fire Safety UL and Cerberus PRO UL Fire Protection Systems
ICSA-24-137-13 Siemens Industrial Products
ICSA-24-137-14 Rockwell Automation FactoryTalk View SE
ICSA-23-044-01 Mitsubishi Electric MELSEC iQ-R Series Safety CPU and SIL2 Process CPU (Update A)
ICSA-24-074-14 Mitsubishi Electric MELSEC-Q/L Series (Update A)
ICSMA-20-049-02 GE Healthcare Ultrasound Products (Update A)

WhatsApp banned on all US House of Representatives devices

By F2 / Tuesday , June 24 2025

The U.S. House of Representatives has banned congressional staff from using WhatsApp on government devices due to security concerns, as...

WhatsApp banned on all US House of Representatives devices

Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

By F2 / Tuesday , June 24 2025

Kaspersky found a new mobile malware dubbed SparkKitty in Google Play and Apple App Store apps, targeting Android and iOS....

Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store

OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

By F2 / Tuesday , June 24 2025

OWASP has released its AI Testing Guide, a framework to help organizations find and fix vulnerabilities specific to AI systems....

OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems

Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

By F2 / Tuesday , June 24 2025

In a major milestone for the country’s digital infrastructure, Axentec PLC has officially launched Axentec Cloud, Bangladesh’s first Tier-4 cloud...

Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform

Hackers Bypass Gmail MFA With App-Specific Password Reuse

By infosecbulletin / Monday , June 23 2025

A hacking group reportedly linked to Russian government has been discovered using a new phishing method that bypasses two-factor authentication...

Hackers Bypass Gmail MFA With App-Specific Password Reuse

Russia detects first SuperCard malware attacks via NFC

By infosecbulletin / Wednesday , June 18 2025

Russian cybersecurity experts discovered the first local data theft attacks using a modified version of legitimate near field communication (NFC)...

Russia detects first SuperCard malware attacks via NFC

Income Property Investments exposes 170,000+ Individuals record

By infosecbulletin / Tuesday , June 17 2025

Cybersecurity researcher Jeremiah Fowler discovered an unsecured database with 170,360 records belonging to a real estate company. It contained personal...

Income Property Investments exposes 170,000+ Individuals record

ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs

By infosecbulletin / Tuesday , June 17 2025

GreyNoise found attempts to exploit CVE-2023-28771, a vulnerability in Zyxel's IKE affecting UDP port 500. The attack centers around CVE-2023-28771,...

ALERT (CVE: 2023-28771) Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs

CISA Flags Active Exploits in Apple iOS and TP-Link Routers

By infosecbulletin / Tuesday , June 17 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently included two high-risk vulnerabilities in its Known Exploited Vulnerabilities (KEV)...