InfoSecBulletin Cybersecurity for mankind
- CareSource falls victim to Cl0p cyber attack, resulting in alleged leakage of patient data. CareSource, the health insurance company, recently fell victim to a malicious ransomware attack orchestrated by the notorious Cl0p group. As a result, there is a possibility that certain confidential patient data has been compromised and leaked.
ALSO READ:
“Mysterious team Bangladesh”, Group IB-report-hacktivists
Sophos to Acquire Secureworks in $859M
By infosecbulletin / Tuesday , October 22 2024Sophos, based in the UK, is to acquire Secureworks, a Nasdaq-listed company, for $859 million in cash from Dell Technologies....Read More
2nd time hacker breached Internet Archive
By infosecbulletin / Monday , October 21 2024The Internet Archive was breached again, this time through their Zendesk email support platform, following warnings that threat actors had...Read More
Vulnhuntr: A Tool for Finding Exploitable Vulnerabilities with LLMs
By infosecbulletin / Sunday , October 20 2024In today's changing cybersecurity environment, it's essential to find vulnerabilities in code. Vulnhuntr, an open-source tool on GitHub, uses Large...Read More
Critical Vulnerabilities in Bitdefender Total Security Expose Users to MITM
By infosecbulletin / Friday , October 18 2024Bitdefender said a vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software fails to properly...Read More
Microsoft’s Alarming Report: 600 Million Cyberattacks perday
By infosecbulletin / Thursday , October 17 2024Cybersecurity threats have surged to extraordinary heights, as Microsoft’s latest Digital Defense Report reveals that its customers are confronted with...Read More
CVE-2024-38814
VMware fixes high-severity SQL injection flaw in HCXBy infosecbulletin / Thursday , October 17 2024VMware has issued a warning about a remote code execution vulnerability, CVE-2024-38814, with a CVSS score of 8.8, in its...Read More
Over 90 Zero-Days, 40+ N-Days Exploited In The Wild
By infosecbulletin / Thursday , October 17 2024Mandiant researchers found that over 90 zero-day vulnerabilities and more than 40 known vulnerabilities were exploited in the wild. Vulnerabilities...Read More
Oracle Security Update, 334 Vulnerabilities Patched
By infosecbulletin / Wednesday , October 16 2024Oracle's October 2024 Critical Patch Update has fixed 334 security vulnerabilities in its products. The CPU affects 28 Oracle product...Read More
Chrome 130 Launches with Patches for 17 Security Vulnerabilities
By infosecbulletin / Wednesday , October 16 2024Google has released Chrome 130, fixing 17 security vulnerabilities. The update (version 130.0.6723.58/.59 for Windows and Mac, and 130.0.6723.58 for...Read More
Researchers Break RSA Encryption with Quantum Computing
By infosecbulletin / Wednesday , October 16 2024Chinese researchers, led by Wang Chao from Shanghai University, have cracked RSA encryption using quantum computers. This achievement raises serious...Read More
- Salesforce has been hit by a zero-day exploit that targets Meta. Attackers have successfully exploited a zero-day bug in Salesforce, capitalizing on its vulnerability to illicitly obtain confidential information from various organizations.
- The Worldcoin project is experiencing global scrutiny, leading to its suspension in Kenya. Following concerns raised by the Kenyan government about its data collection practices, the cryptocurrency project Worldcoin has been suspended in Kenya.
- Researchers have recently discovered a workaround for an extremely important vulnerability in Ivanti EPMM that was recently patched. A team of researchers has made a groundbreaking discovery—a bypass for a recently patched critical vulnerability in Ivanti EPMM. This breakthrough could potentially grant attackers unauthorized access to systems, posing a significant threat to security.
- Ongoing attacks have led to the infiltration of web shells in more than 640 Citrix servers. A multitude of Citrix Netscaler ADC and Gateway servers have fallen victim to a wave of relentless cyberattacks, leading to the infiltration of web shells.
