Daily Security Update Dated: 04.12.2024

Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so on. Its our daily security digest to cover the latest happenings in the world.

Spend a bit time to read out todays update:

• International

India releases draft Digital Personal Data Protection Rules

By infosecbulletin / Monday , January 6 2025

On Friday, the Indian government released the draft Digital Personal Data Protection Rules, requiring social media and online platforms to...

Read More

• International

Microsoft to invest $80 Billion in AI Data Center

By infosecbulletin / Monday , January 6 2025

Microsoft recently shared a vision for the future of American technology and economic competitiveness, highlighting Artificial Intelligence (AI) as central...

Read More

• Alert

3.3 Million Email Server Expose User Passwords and Messages in Plain Text

By infosecbulletin / Saturday , January 4 2025

Around 3.3 million servers are running POP3/IMAP email services without encryption (TLS) enabled, the Shadowserver Foundation, a nonprofit security organization,...

Read More

• Hot Topic
• Vulnerabilities

Memory-Dump-UEFI
Researcher dumping memory to bypass BitLocker on Windows 11

By infosecbulletin / Thursday , January 2 2025

Researchers have demonstrated a method to bypass Windows 11’s BitLocker encryption, enabling the extraction of Full Volume Encryption Keys (FVEKs)...

Read More

• Vulnerabilities

CVE-2024-49112
PoC Exploit Released for Zero-Click vulnerability in Windows

By infosecbulletin / Thursday , January 2 2025

SafeBreach Labs revealed a zero-click vulnerability in the Windows Lightweight Directory Access Protocol (LDAP) service, dubbed “LDAP Nightmare”. This critical...

Read More

• Bank
• National

Financial Threat Assessment 2024
BCSI marks Bangladeshi 28 banks high, 10 medium for cyber attack

By infosecbulletin / Tuesday , December 31 2024

Bangladesh Cyber Security Intelligence (BCSI) has published Financial Threat Assessment report for 2024. In an era where financial institutions and...

Read More

• Vulnerabilities

Misconfigured Kubernetes RBAC in Azure Airflow Could Expose Entire Cluster

By infosecbulletin / Tuesday , December 31 2024

Cybersecurity researchers have uncovered three security weaknesses in Microsoft's Azure Data Factory Apache Airflow integration that, if successfully exploited, could...

Read More

• Cyber Attack

US Treasury says it was hacked by China via third party: Beijing denies

By infosecbulletin / Tuesday , December 31 2024

The US Treasury Department said on Monday that Chinese-linked hackers were able to gain access to ‘unclassified documents’ after compromising...

Read More

• Alert
• Vulnerabilities

PoC Exploited Released for Oracle Weblogic Server Vul

By infosecbulletin / Monday , December 30 2024

Security researchers have warned that a Proof-of-Concept (PoC) exploit has been publicly released for a critical vulnerability affecting Oracle WebLogic...

Read More

• International

Microsoft warn dev urgently to update .NET installer link

By infosecbulletin / Monday , December 30 2024

Microsoft is forcing .NET developers to quickly update their apps and developer pipelines so they do not use 'azureedge.net' domains...

Read More

Record-Breaking $2 Million Bounty Offered To Crypto.com Hackers (Source: Forbes)

US says Chinese hackers are still lurking in American phone networks (Source: TechCrunch)

California Teen Suspected of Being a Member of Scattered Spider Hacking Gang (Source: Bloomberg)

Chinese lidar sensors pose hacking risk to US defense equipment, report says (Source: Reuters)

‘Cyber incident’ knocks out City of Odessa, Texas for third straight week (Source: MySanAntonio.com)

Costa Rica state energy company hit with a ransomware attack (Source: The Record)