InfoSecBulletin Cybersecurity for mankind
5 notable happenings in the world in cyber industry:
*The Space Exploration Agency of Japan jaxa experienced a cyber incident. They suspect that there was a breach in their Active Directory implementation. To control the attack, they shut down a section of their network and intranet.
FBI investigating cyberattack at Oracle, Bloomberg News reports
OpenAI Offering $100K Bounties for Critical Vulns
Splunk Alert User RCE and Data Leak Vulns
CIRT alert Situational Awareness for Eid Holidays
Cyberattack on Malaysian airports: PM rejected $10 million ransom
Micropatches released for Windows zero-day leaking NTLM hashes
VMware Patches Authentication Bypass Flaw in Windows Tool
IngressNightmare
Over 40% of cloud environments are vulnerable to RCE
(CVE-2025-29927)
Urgently Patch Your Next.js for Authorization Bypass
Oracle refutes breach after hacker claims 6 million data theft
* Zimperium researchers found over 200 harmful apps in the Android malware campaign. The campaign started in July and is now targeting banks and cryptocurrency firms.
ALSO READ:
*Google released security updates for Chrome browser. These updates fix seven vulnerabilities, including one that is actively being exploited, known as the zero-day exploit (CVE-2023-6345).
*LockBit 3.0 ransomware attacked Fawry, an Egyptian e-payment provider, and stole data. Customer information may have been compromised.
*The Play ransomware group targeted 14 companies in the U.S. and three in the U.K., Netherlands, and Canada. The victims are from various sectors, including IT services, retail, real estate, and others.
