InfoSecBulletin Cybersecurity for mankind
On June 18, 2024, CISA released an advisory about Industrial Control Systems (ICS). These advisories give important information about security issues, vulnerabilities, and exploits related to ICS.
ICSA-24-170-01 RAD Data Communications SecFlow-2:
UnitedHealth confirms 190 million impacted by 2024 data breach
By infosecbulletin
/ Monday , January 27 2025
UnitedHealth confirmed that the ransomware attack on its Change Healthcare unit last February impacted about 190 million Americans, nearly double...
Read More
Registration Open For BCS CTF 2025
By infosecbulletin
/ Monday , January 27 2025
So, to test your cyber security skill, here is another chance to do that. Bangladesh computer society (BCS) is going...
Read More
New Ransomware Tactics Target VMware ESXi Via SSH Tunneling
By infosecbulletin
/ Sunday , January 26 2025
Sygnia's recent report highlights the changing strategies of ransomware groups targeting VMware ESXi appliances. These attackers exploit vital virtual infrastructure...
Read More
Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass
By infosecbulletin
/ Friday , January 24 2025
An exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting...
Read More
CISA Releases 6 ICS Advisories Detailing Security Issues
By infosecbulletin
/ Friday , January 24 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released 6 advisories for Industrial Control Systems (ICS), highlighting vulnerabilities in various...
Read More
Account Credentials for Security Vendors Found on Dark Web: Cyble Report
By infosecbulletin
/ Thursday , January 23 2025
# "While many leaked security credentials belong to customers, some exposed sensitive accounts suggest that security vendors too have been...
Read More
Four Critical Ivanti CSA Vulnerabilities Exploited: CISA , FBI warns
By infosecbulletin
/ Thursday , January 23 2025
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory...
Read More
GitLab Releases Patch (CVE-2025-0314) for XSS Exploit
By infosecbulletin
/ Thursday , January 23 2025
GitLab has released update for high severity cross-site scripting (XSS) flaw. Versions 17.8.1, 17.7.3, and 17.6.4 for both Community Edition...
Read More
CVE-2025-20156
Cisco Fixes Meeting Management Allowing Privilege Escalation
By infosecbulletin
/ Thursday , January 23 2025
Cisco has released a security advisory concerning a critical privilege escalation vulnerability (CVE-2025-20156) in its Meeting Management software. With a...
Read More
Delay patching leaves about 50,000 Fortinet firewalls to zero-day attack
By infosecbulletin
/ Wednesday , January 22 2025
Fortinet customers must apply the latest updates, as almost 50,000 management interfaces remain vulnerable to the latest zero-day exploit. The...
Read More
Successful exploitation of this vulnerability could allow an attacker to obtain files from the operating system by crafting a special request.
CISA urges to review the new ICS advisories for more information and ways to address any issues.
