InfoSecBulletin Cybersecurity for mankind
- CareSource falls victim to Cl0p cyber attack, resulting in alleged leakage of patient data. CareSource, the health insurance company, recently fell victim to a malicious ransomware attack orchestrated by the notorious Cl0p group. As a result, there is a possibility that certain confidential patient data has been compromised and leaked.
ALSO READ:
“Mysterious team Bangladesh”, Group IB-report-hacktivists
CISA: Splunk flaw under active exploit, patch by Sunday
By infosecbulletin / Saturday , June 20 2026The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has asked federal agencies to protect their systems by Sunday from a...Read More
Texas data breach exposes 3 million driver’s licenses
By infosecbulletin / Saturday , June 20 2026The Texas Parks and Wildlife Department (TPWD) revealed a data leak at its license system provider. This leak exposed private...Read More
Critical Cisco ISE Vulnerability Enables Remote Code Execution
By infosecbulletin / Friday , June 19 2026Cisco has revealed critical security flaws in its Identity Services Engine (ISE). These flaws could let attackers run harmful code...Read More
F5 Patches NGINX Flaw for Code Execution and DoS Attacks
By infosecbulletin / Thursday , June 18 2026F5 has shared a security warning about serious flaws in NGINX. These issues could let attackers run any code and...Read More
FortiBleed: 70,000 Fortinet Firewalls Compromised Globally
By infosecbulletin / Wednesday , June 17 2026A vast cyber spying operation called “FortiBleed” has quietly compromised more than 73,932 different Fortinet firewall URLs in 194 countries....Read More
New Rokarolla Android malware hits 217 banking and crypto apps
By infosecbulletin / Wednesday , June 17 2026A new Android banking trojan called Rokarolla is hitting 217 banking and cryptocurrency apps with a wide range of 137...Read More
Phishing Campaign Exploits Legitimate Microsoft Login Flow
By infosecbulletin / Tuesday , June 16 2026Attackers are using Microsoft’s OAuth 2.0 Device Authorization Grant (device code) flow in a campaign to take control of Microsoft...Read More
ALERT
Cisco SD-WAN Zero-Day, FortiSandbox and cPanel flaws exploited in attacksBy infosecbulletin / Tuesday , June 16 2026Cisco on Monday told customers about a new SD-WAN product flaw used in attacks. The flaw, called CVE-2026-20262, is a...Read More
“Panthalassa” builds floating AI data centers powered by ocean waves
By infosecbulletin / Tuesday , June 16 2026Every American data center story these days follows almost the same pattern. Someone has the chips, someone has the cash,...Read More
Critical Wazuh Vuln Enables Alert Tampering and Evidence Deletion
By infosecbulletin / Monday , June 15 2026A critical security flaw has affected the open-source security community. Recently, complete details and working exploit code were shared online....Read More
- Salesforce has been hit by a zero-day exploit that targets Meta. Attackers have successfully exploited a zero-day bug in Salesforce, capitalizing on its vulnerability to illicitly obtain confidential information from various organizations.
- The Worldcoin project is experiencing global scrutiny, leading to its suspension in Kenya. Following concerns raised by the Kenyan government about its data collection practices, the cryptocurrency project Worldcoin has been suspended in Kenya.
- Researchers have recently discovered a workaround for an extremely important vulnerability in Ivanti EPMM that was recently patched. A team of researchers has made a groundbreaking discovery—a bypass for a recently patched critical vulnerability in Ivanti EPMM. This breakthrough could potentially grant attackers unauthorized access to systems, posing a significant threat to security.
- Ongoing attacks have led to the infiltration of web shells in more than 640 Citrix servers. A multitude of Citrix Netscaler ADC and Gateway servers have fallen victim to a wave of relentless cyberattacks, leading to the infiltration of web shells.
