InfoSecBulletin

CISA Flags Craft CMS Code Injection Flaw Amid Active Attacks

CISA has added a serious security flaw in the Craft content management system (CMS) to its Known Exp…
B1ack’s Stash Releases 1 Million Credit Cards on a Deep Web Forum

On February 19, 2025, the illegal marketplace B1ack’s Stash released over 1 million unique sto…
Cisco Confirms
Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Cisco Talos reported that Salt Typhoon, also known as FamousSparrow and GhostEmperor, has been spyi…
AWS Key Hunter
Test this free automated tool to hunt for exposed AWS secrets

A free tool is now available to scan public GitHub repositories for exposed AWS credentials. Securit…
Check Point Flaw Used to Deploy ShadowPad and Ransomware

An unknown threat cluster has targeted European healthcare organizations, deploying PlugX and Shadow…

Feature

Successfully held “InfoSecCon-2024″at Dhaka Bangladesh

Monday , October 28 2024 0

With a festive look and the participation of more than one hundred participants from Bangladesh …
Read More »
Navigating the Cyber Threat Landscape – Digital bank, Bangladesh perspective

Friday , May 31 2024 0
Factors to shape unified data storage in 2024

Monday , December 25 2023 0
Global Telco Market expected reach a CAGR of 10.5%
Global Cyber Attack in Telecom Sector Market Synopsis

Monday , November 13 2023 Comments Off on Global Telco Market expected reach a CAGR of 10.5%
Global Cyber Attack in Telecom Sector Market Synopsis
Cyber Resilience: Elevating Bangladesh’s Corporate Culture Safeguard

Saturday , November 11 2023 0

Financial Threat Assessment 2024
BCSI marks Bangladeshi 28 banks high, 10 medium for cyber attack

Tuesday , December 31 2024 0

Bangladesh Cyber Security Intelligence (BCSI) has published Financial Threat Assessment report for 2024. In an …
Read More »
BCSI officially announce National Vulnerability Disclosure Program (NVDP)

Wednesday , December 25 2024 0
Splunk targets Bangladeshi market: Investing in local talent

Monday , December 23 2024 0
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA

Thursday , December 19 2024 0
Meta fails to detect
9 Deepfake videos identified of Dr. Md. Yunus and Shakib Khan

Thursday , December 12 2024 0

Alert

CISA Flags Craft CMS Code Injection Flaw Amid Active Attacks

14 hours ago 0

CISA has added a serious security flaw in the Craft content management system (CMS) to …
Read More »
CISA and FBI ALERT
Ghost ransomware to breach organizations in 70 countries

3 days ago 0
Hacker chains multiple vulns to attack Palo Alto Firewall

3 days ago 0

Zimbra Releases Updates for SQL Injection, XSS, and SSRF Vulns

2 weeks ago 0

Zimbra has released updates for its Collaboration software to fix critical security flaws that could lead to information disclosure if exploited. CVE-2025-25064 is a critical vulnerability with a CVSS score of 9.8. It is an SQL injection issue in the ZimbraSync Service SOAP endpoint, affecting versions before 10.0.12 and 10.1.4. …

CVE-2025-23369
SAML Bypass Auth on GitHub Enterprise Servers to Login

2 weeks ago 0

A serious security vulnerability, CVE-2025-23369, has been found in GitHub Enterprise Server (GHES) that lets attackers bypass SAML authentication and impersonate user accounts. This vulnerability takes advantage of specific anomalies in the libxml2 library employed in SAML response validation, allowing unauthorized access to accounts, even those with administrative rights. The …

India to launch new domain name for banks to combat digital fraud

2 weeks ago 0

India’s central bank to launch a special “.bank.in” domain for banks in April 2025 to fight digital payment fraud and enhance trust in online banking. The Reserve Bank of India announced that the Institute for Development and Research in Banking Technology (IDRBT) will exclusively manage the new “fin.in” domain for …

Page 13 of 501« First...10 «11 121314 15 »20 30 40...Last »

CISA has added a serious security flaw in the Craft content management system (CMS) to its Known Exp…

On February 19, 2025, the illegal marketplace B1ack’s Stash released over 1 million unique sto…

Cisco Talos reported that Salt Typhoon, also known as FamousSparrow and GhostEmperor, has been spyi…

A free tool is now available to scan public GitHub repositories for exposed AWS credentials. Securit…

An unknown threat cluster has targeted European healthcare organizations, deploying PlugX and Shadow…

Recent Posts