InfoSecBulletin Cybersecurity for mankind
Misconfigured systems can spill data, which can be used by threat actors to breach a company’s systems and hijack communication channels.
In one instance, a misconfiguration issue in Swiss real estate agency Neho’s website exposed sensitive credentials for AWS, email services, communication tools, and review platforms to the public. This put the company’s internal systems and corporate communications at risk.
CISA adds Cisco and Windows vulns as actively exploited
By infosecbulletin
/ Tuesday , March 4 2025
CISA has advised US federal agencies to secure their systems against attacks targeting vulnerabilities in Cisco and Windows. Although these...
Read More
10 New Vulnerabilities Discovered in MediaTek Chipsets
By infosecbulletin
/ Monday , March 3 2025
MediaTek has released its March 2025 Product Security Bulletin, which highlights new security vulnerabilities affecting various chipsets in smartphones, tablets,...
Read More
Qualcomm’s March 2025 Security Bulletin Highlights Major Vulns
By infosecbulletin
/ Monday , March 3 2025
Qualcomm's March 2025 Security Bulletin addresses vulnerabilities in its products, including automotive systems, mobile chipsets, and networking devices. It includes...
Read More
Cyberattack detected at Polish space agency, minister says
By infosecbulletin
/ Monday , March 3 2025
On Sunday, Poland Minister for Digitalisation Krzysztof Gawkowski said that Polish cybersecurity services found unauthorized access to the IT infrastructure...
Read More
Nearly 12,000 API Keys and Passwords Found in Public Datasets
By infosecbulletin
/ Monday , March 3 2025
Security researchers found that datasets used by companies to develop large language models included API keys, passwords, and other sensitive...
Read More
Android Phone’s Unlocked Using Cellebrite’s Zero-day Exploit
By infosecbulletin
/ Sunday , March 2 2025
Amnesty International’s Security Lab discovered a cyber-espionage campaign in Serbia, where officials used a zero-day exploit from Cellebrite to unlock...
Read More
DragonForce Ransomware Targets Saudi Company, 6TB Data Stolen
By infosecbulletin
/ Saturday , March 1 2025
DragonForce ransomware targets organizations in Saudi Arabia. An attack on a major Riyadh real estate and construction firm led to...
Read More
Microsoft Uncovers Hackers Selling Illegal Azure AI Access
By infosecbulletin
/ Saturday , March 1 2025
Microsoft has filed an amended complaint in recent civil litigation, naming the main developers of malicious tools that bypass the...
Read More
By 2025, India’s First Semiconductor Chip to be ready
By infosecbulletin
/ Friday , February 28 2025
At the Global Investors Summit 2025, Union Minister Ashwini Vaishnaw announced that India’s first indigenous semiconductor chip will be ready...
Read More
CVE-2025-20111
Cisco Warns Vulns in Nexus 3000 and 9000 Series Switches
By infosecbulletin
/ Thursday , February 27 2025
Cisco has warned of a critical vulnerability, CVE-2025-20111, in several Nexus switch models. This flaw could let attackers remotely crash...
Read More
Threat actors are also targeting the healthcare sector.
An Idaho hospital and its partner clinics fell prey to an attack that forced it to redirect emergency services. The incident also impacted Idaho Falls Community Hospital and its partner hospitals.
The Dark Pink group has been active this year, amassing five new victims.
New research revealed that the Dark Pink group has been pretty active this year as it amassed five new victims. The group has targeted government, education, and military organizations in Belgium, Thailand, and Brunei.
Here are some other recent cyberattacks:
- Greece’s Education Ministry suffered a DDoS attack that disabled a centralized high school examination platform. This affected computers from 114 countries, causing outages and delays in high school exams.
- Discord communities focused on cryptocurrency were hacked after their administrators were tricked into running malicious Javascript code disguised as a web browser bookmark.
- Scammers stole $170,000 from crypto investors by hacking the Twitter account of American DJ Steve Aoki and posting a message that promoted a new cryptocurrency token, PSYOP.
- The Anonymous Sudan threat group demanded a ransom of $3 million from Scandinavian Airlines (SAS) to stop the DDoS attacks on the airline’s websites it has been conducting since February.
- Trend Micro researchers spotted similarities between the new BlackSuit ransomware and Royal ransomware, with both employing intermittent encryption techniques to accelerate the encryption process on victims’ systems.
- Threat actors were found advertising the new SeroXen RAT, on underground forums, which combines the capabilities of Quasar RAT, r77-rootkit, and the command line NirCmd. It is mostly popular in the gaming community.
- A group of Ukrainian attackers claimed to have destroyed the infrastructure and stolen the documents and project source code belonging to Skolkovo Foundation, Russia’s ‘Silicon Valley’.
