InfoSecBulletin Cybersecurity for mankind
Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so on. Its our daily security digest to cover the latest happenings in the world.
Spend a bit time to read out todays update:
CVE-2025-29824
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day
By infosecbulletin
/ Wednesday , May 7 2025
Attackers linked to the Play ransomware operation deployed a zero-day privilege escalation exploit during an attempted attack against an organization...
Read More
Hacker exploited Samsung MagicINFO 9 Server RCE flaw
By infosecbulletin
/ Wednesday , May 7 2025
Hackers are exploiting an unauthenticated remote code execution vulnerability in the Samsung MagicINFO 9 Server to take control of devices...
Read More
CISA adds Langflow flaw to its KEV catalog
By infosecbulletin
/ Tuesday , May 6 2025
CISA added the Langflow vulnerability, CVE-2025-3248 (CVSS score 9.8), to its Known Exploited Vulnerabilities catalog. Langflow is a popular tool...
Read More
Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
By infosecbulletin
/ Tuesday , May 6 2025
Google has released its monthly Android security updates, addressing 46 vulnerabilities, including one that has been actively exploited. CVE-2025-27363 (CVSS...
Read More
UAP hosted “UAP Cyber Siege 2025”, A national level cybersecurity competition
By infosecbulletin
/ Tuesday , May 6 2025
The Cyber Security Club, representing the Department of Computer Science and Engineering at the University of Asia Pacific (UAP), has...
Read More
xAI Dev Leaks API Key for Private SpaceX, Tesla & Tweeter
By infosecbulletin
/ Monday , May 5 2025
A major security issue happened at Elon Musk’s AI company, xAI, when a developer accidentally posted a private API key...
Read More
SonicWall Exploit Chain Exposes Admin Hijack Risk via 2 CVEs
By infosecbulletin
/ Monday , May 5 2025
A new exploit chain for SonicWall's Secure Mobile Access (SMA) appliances has been released by watchTowr Labs. It details how...
Read More
TikTok fined €530 million for sending E.U. Data to China
By infosecbulletin
/ Friday , May 2 2025
Ireland's Data Protection Commission fined TikTok €530 million ($601 million) on Friday for violating data protection laws by transferring European...
Read More
Microsoft New Accounts Go Passwordless By Default
By infosecbulletin
/ Friday , May 2 2025
Microsoft is focusing on eliminating password-based authentication, promoting passwordless sign-in and sign-up methods instead. For the past decade, Microsoft has...
Read More
SonicWall Patched for SSRF Vulnerability in SMA1000 Appliances
By infosecbulletin
/ Friday , May 2 2025
SonicWall's Product Security Incident Response Team (PSIRT) has released a critical update for its SMA1000 series appliances due to a...
Read More
Volunteer hackers dive into America’s leaky water infrastructure (Source: The Register)
Starbucks Wrestles With Ransomware Attack on Software Supplier (Source: The Wall Street Journal)
UK hospital suffers cyber incident, systems down (Source: ECHO)
New York fines Geico $9.8 million over data breach (Source: Reuters)
