InfoSecBulletin Cybersecurity for mankind
Some of notable happening the cyber world:
St. Cloud, Florida, experienced a ransomware attack that disrupted city services and required changes in how payments are made at some city facilities.
YouTube geo-blocks at least four Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CVE-2025-29824
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day
Hacker exploited Samsung MagicINFO 9 Server RCE flaw
CISA adds Langflow flaw to its KEV catalog
Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
Russian hackers Cozy Bear used fake dinner invites to attack German political parties, installing the WINELOADER backdoor.
A supply-chain attack hit the Top.gg Discord bot community, spreading malware to 170,000 developers. The attackers took over GitHub accounts to distribute harmful Python packages and created a fake Python package mirror.
A United Nations panel is looking into 58 cyberattacks by North Korean groups, such as Kimsuky, Lazarus, Andariel, and BlueNoroff, which led to around $3 billion being stolen over six years.
GitLab bought Oxeye to improve risk detection in applications and decrease incorrect alerts.
