InfoSecBulletin Cybersecurity for mankind
Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so on. Its our daily security digest to cover the latest happenings in the world.
Spend a bit time to read out todays update:
Oracle refutes breach after hacker claims 6 million data theft
By infosecbulletin
/ Sunday , March 23 2025
A hacker known as “rose87168” claims to have stolen six million records from Oracle Cloud servers. The stolen data includes...
Read More
Russian zero-day seller to offer up to $4 million for Telegram exploits
By infosecbulletin
/ Saturday , March 22 2025
Operation Zero, a Russian zero-day broker, is offering up to $4 million for Telegram exploits. They seek $500K for one-click...
Read More
Cybercriminals Exploit Checkpoint’s Driver in a BYOVD Attack
By infosecbulletin
/ Friday , March 21 2025
Threat actors are exploiting a component of CheckPoint's ZoneAlarm antivirus to bypass Windows security measures. Nima Bagheri, a security researcher...
Read More
IBM and Veeam Release Patches in AIX System and Backup
By infosecbulletin
/ Friday , March 21 2025
IBM has resolved two critical vulnerabilities in its AIX operating system that could allow command execution. The list of shortcomings,...
Read More
WhatsApp patched zero-click flaw exploited in spyware attacks
By infosecbulletin
/ Wednesday , March 19 2025
WhatsApp has patched a zero-click, zero-day vulnerability used to install Paragon's Graphite spyware following reports from security researchers at the...
Read More
CVE-2025-24472
CISA Warns of Fortinet FortiOS Auth Bypass Vuln Exploited in Wild
By infosecbulletin
/ Wednesday , March 19 2025
CISA has issued a critical alert about a critical vulnerability in Fortinet’s FortiOS and FortiProxy systems. CVE-2025-24472, an authentication bypass...
Read More
11 state hackers exploit new Windows zero-day since 2017
By infosecbulletin
/ Wednesday , March 19 2025
11 nation-state groups from North Korea, China, and Russia are exploiting a vulnerability in a common feature of Microsoft Windows....
Read More
Hackers Exploit ChatGPT with CVE-2024-27564
By infosecbulletin
/ Tuesday , March 18 2025
Attackers are actively targeting OpenAI, exploiting CVE-2024-27564, a Server-Side Request Forgery (SSRF) vulnerability in OpenAI’s ChatGPT infrastructure. Veriti’s latest research...
Read More
(CVE-2024-540385)
CVSS 10 Alert! HPE Cray Vulnerability Authentication Bypass Threat
By infosecbulletin
/ Tuesday , March 18 2025
A critical vulnerability, CVE-2024-540385, has been found in HPE Cray XD670 servers using the AMI BMC Redfish API, allowing remote...
Read More
CVE-2025-24813
Apache Tomcat Flaw Exploited In The Wild
By infosecbulletin
/ Tuesday , March 18 2025
CVE-2025-24813, a critical remote code execution vulnerability, is actively exploited, enabling attackers to control vulnerable Apache Tomcat servers with a...
Read More
MITRE Launches D3FEND 1.0 – A Milestone in Cybersecurity Ontology (Source: MITRE)
Several Swiss municipalities and banks hit by cyberattack (Source: swissinfo.ch)
UAE reports over 200,000 daily cyberattacks on strategic sectors (Source: Alarabiya News)
FTC Says Companies Are Using Your Data for Individualized ‘Surveillance Pricing’ (Source: PCMag)
Costa Rica Cybercrime Doubles as Criminals Go Digital (Source: The Tico Times)
