InfoSecBulletin

CISA Flags Craft CMS Code Injection Flaw Amid Active Attacks

CISA has added a serious security flaw in the Craft content management system (CMS) to its Known Exp…
B1ack’s Stash Releases 1 Million Credit Cards on a Deep Web Forum

On February 19, 2025, the illegal marketplace B1ack’s Stash released over 1 million unique sto…
Cisco Confirms
Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Cisco Talos reported that Salt Typhoon, also known as FamousSparrow and GhostEmperor, has been spyi…
AWS Key Hunter
Test this free automated tool to hunt for exposed AWS secrets

A free tool is now available to scan public GitHub repositories for exposed AWS credentials. Securit…
Check Point Flaw Used to Deploy ShadowPad and Ransomware

An unknown threat cluster has targeted European healthcare organizations, deploying PlugX and Shadow…

Feature

Successfully held “InfoSecCon-2024″at Dhaka Bangladesh

Monday , October 28 2024 0

With a festive look and the participation of more than one hundred participants from Bangladesh …
Read More »
Navigating the Cyber Threat Landscape – Digital bank, Bangladesh perspective

Friday , May 31 2024 0
Factors to shape unified data storage in 2024

Monday , December 25 2023 0
Global Telco Market expected reach a CAGR of 10.5%
Global Cyber Attack in Telecom Sector Market Synopsis

Monday , November 13 2023 Comments Off on Global Telco Market expected reach a CAGR of 10.5%
Global Cyber Attack in Telecom Sector Market Synopsis
Cyber Resilience: Elevating Bangladesh’s Corporate Culture Safeguard

Saturday , November 11 2023 0

Financial Threat Assessment 2024
BCSI marks Bangladeshi 28 banks high, 10 medium for cyber attack

Tuesday , December 31 2024 0

Bangladesh Cyber Security Intelligence (BCSI) has published Financial Threat Assessment report for 2024. In an …
Read More »
BCSI officially announce National Vulnerability Disclosure Program (NVDP)

Wednesday , December 25 2024 0
Splunk targets Bangladeshi market: Investing in local talent

Monday , December 23 2024 0
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA

Thursday , December 19 2024 0
Meta fails to detect
9 Deepfake videos identified of Dr. Md. Yunus and Shakib Khan

Thursday , December 12 2024 0

Alert

CISA Flags Craft CMS Code Injection Flaw Amid Active Attacks

12 hours ago 0

CISA has added a serious security flaw in the Craft content management system (CMS) to …
Read More »
CISA and FBI ALERT
Ghost ransomware to breach organizations in 70 countries

3 days ago 0
Hacker chains multiple vulns to attack Palo Alto Firewall

3 days ago 0

(CVE-2025-23419)
F5 Warns of TLS Session Resumption Vulnerability in NGINX

2 weeks ago 0

F5 has warned of a vulnerability in NGINX, a widely used web server software. The issue, known as CVE-2025-23419, could let attackers bypass client certificate authentication and gain unauthorized access to sensitive resources. When name-based virtual hosts are configured to share the same IP address and port combination, with TLS …

Ransomware payments statistics for 2024, a drop of 35%

2 weeks ago 0

Ransomware payments dropped by 35% last year compared to 2023, despite an increase in the number of attacks, according to a new report from Chainalysis. Despite claims from cybersecurity firms that ransomware activity peaked in 2024, there has been a significant drop in extortion payments. Chainalysis also noted in its …

CISA Adds 4 Actively Exploited Vuls to KEV Catalog

3 weeks ago 0

CISA added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, noting they are actively being exploited. The list of vulnerabilities is as follows: CVE-2024-45195 (CVSS score: 7.5/9.8) – (A vulnerability in Apache OFBiz that lets a remote attacker gain unauthorized access and run code on the server, fixed …

Page 17 of 501« First...10 «15 161718 19 »20 30 40...Last »

CISA has added a serious security flaw in the Craft content management system (CMS) to its Known Exp…

On February 19, 2025, the illegal marketplace B1ack’s Stash released over 1 million unique sto…

Cisco Talos reported that Salt Typhoon, also known as FamousSparrow and GhostEmperor, has been spyi…

A free tool is now available to scan public GitHub repositories for exposed AWS credentials. Securit…

An unknown threat cluster has targeted European healthcare organizations, deploying PlugX and Shadow…

Recent Posts