‘Evil Telegram’ Spyware Campaign Infects 60K+ Users

Spyware posing as fake Telegram “mods” has been downloaded by thousands of people on Google Play. This is a serious issue for business users.

Mods, or modified applications, are widely recognized as an integral part of the Telegram ecosystem for enhancing the functionality of the popular messaging client. Mods are applications that include all the essential functionality of an official client, but are enhanced with an array of amazing additional features. Telegram actively encourages this type of development and considers it completely legitimate.

• Hot Topic

Account Credentials for Security Vendors Found on Dark Web: Cyble Report

By infosecbulletin / Thursday , January 23 2025

# "While many leaked security credentials belong to customers, some exposed sensitive accounts suggest that security vendors too have been...

Read More

• Vulnerabilities

Four Critical Ivanti CSA Vulnerabilities Exploited: CISA , FBI warns

By infosecbulletin / Thursday , January 23 2025

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released a joint Cybersecurity Advisory...

Read More

• Alert
• Vulnerabilities

GitLab Releases Patch (CVE-2025-0314) for XSS Exploit

By infosecbulletin / Thursday , January 23 2025

GitLab has released update for high severity cross-site scripting (XSS) flaw. Versions 17.8.1, 17.7.3, and 17.6.4 for both Community Edition...

Read More

• Uncategorized

CVE-2025-20156
Cisco Fixes Meeting Management Allowing Privilege Escalation

By infosecbulletin / Thursday , January 23 2025

Cisco has released a security advisory concerning a critical privilege escalation vulnerability (CVE-2025-20156) in its Meeting Management software. With a...

Read More

• Alert
• Vulnerabilities

Delay patching leaves about 50,000 Fortinet firewalls to zero-day attack

By infosecbulletin / Wednesday , January 22 2025

Fortinet customers must apply the latest updates, as almost 50,000 management interfaces remain vulnerable to the latest zero-day exploit. The...

Read More

• Daily Security Update

Daily Security Update Dated: 21.01.2025

By infosecbulletin / Tuesday , January 21 2025

Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so...

Read More

• Uncategorized

126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems

By infosecbulletin / Tuesday , January 21 2025

Ubuntu 22.04 LTS users are advised to update their systems right away due to a crucial security patch from Canonical...

Read More

• Uncategorized

CERT-UA alerts about “security audit” requests through AnyDesk

By infosecbulletin / Tuesday , January 21 2025

Attackers are pretending to be Ukraine's Computer Emergency Response Team (CERT-UA) using AnyDesk to access target computers. “Unidentified individuals are...

Read More

• Uncategorized

Oracle Critical Pre-Release update addressed 320 flaw

By infosecbulletin / Tuesday , January 21 2025

Oracle Critical Patch Update Pre-Release Announcement shares details about the upcoming update scheduled for January 21, 2025. Note that this...

Read More

• Hot Topic

OWASP Reveils Top 10 Smart Contract Vulnerabilities for 2025

By infosecbulletin / Tuesday , January 21 2025

OWASP has released its updated list of the top 10 vulnerabilities in smart contracts for 2025. This guide highlights the...

Read More

Unknown threat actors are using the official acceptance of Telegram mods to create a new way for cyberespionage, called “Evil Telegram.” This information comes from research by Kaspersky.

Read the full report click here.

G20 Summit: India faced approximately 2,450 targeted cyberattacks