InfoSecBulletin Cybersecurity for mankind
CISA published an advisory about Industrial Control Systems (ICS) on February 22, 2024, to inform about security issues, vulnerabilities, and exploits related to ICS.
- ICSA-24-053-01 Delta Electronics CNCSoft-B DOPSoft:
EXECUTIVE SUMMARY
CVSS v3 7.8 - ATTENTION: Low attack complexity
Vendor: Delta Electronics
Equipment: CNCSoft-B DOPSoft
Vulnerability: Uncontrolled Search Path Element - RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to achieve remote code execution. - AFFECTED PRODUCTS:
The following Delta Electronics products are affected:
Over 145,000 ICS Across 175 Countries Found Exposed Online
By infosecbulletin / Friday , November 22 2024A study by Censys found that more than 145,000 Industrial Control Systems (ICS) are exposed online in 175 countries, highlighting...Read More
World to see AI powered “human washing machines”
By infosecbulletin / Friday , November 22 2024Osaka-based showerhead maker Science Co. is developing a new version of human washing machine based on cutting-edge technology. The company...Read More
Hacker compromised over 2000 Palo Alto Networks Firewalls
By infosecbulletin / Friday , November 22 2024Over 2,000 Palo Alto Networks firewalls have been compromised in a widespread attack using two recently patched vulnerabilities (CVE-2024-0012 and...Read More
“Forces Penpals” exposed US and UK Military Social Network’s 1 Million Records
By infosecbulletin / Thursday , November 21 2024Renowned cybersecurity researcher Jeremiah Fowler uncovered a non-password-protected database having over 1.1 million records linked to Conduitor Limited (Forces Penpals)....Read More
CVE-2024-51503
Trend Micro released updates for Deep Security Agent RCEBy infosecbulletin / Wednesday , November 20 2024Trend Micro released a security update for Deep Security 20 Agent Manual Scan Command Injection RCE Vulnerability (CVE-2024-51503) that resolves...Read More
Apple Releases Patch for two Actively Exploited Zero-Day
By infosecbulletin / Wednesday , November 20 2024Apple released critical updates for its various products including for iOS, iPadOS, macOS, visionOS, and Safari to fix two zero-day...Read More
Maxar Space Data Leak, Company admit, Investigation ongoing!
By infosecbulletin / Tuesday , November 19 2024Maxar Space Systems has verified a major data breach that exposed particular information of current and former workers. The breach...Read More
GitHub CLI Vulnerability Could Allow RCE
By infosecbulletin / Tuesday , November 19 2024A security vulnerability (CVE-2024-52308) in the GitHub Command Line Interface (CLI) could allow remote code execution on users' devices. With...Read More
“Sarcoma” ransomware group
Hacker to disclose “Popular Life Insurance” 36 GB of stolen dataBy infosecbulletin / Tuesday , November 19 2024“Sarcoma” ransomware group attacked a well known Bangladeshi insurance company named "Popular life insurance company ltd". The threat actor keeps...Read More
BugHunt 2024: A Milestone Cyber security Competition held at Dhaka
By infosecbulletin / Monday , November 18 2024Bug Hunt 2024, one of the largest cyber security competitions and conferences in Bangladesh, was successfully held at the ICT...Read More
CNCSoft-B v1.0.0.4 DOPSoft: versions prior to v4.0.0.82
