InfoSecBulletin

1-Click GitHub Token Flaw Allows Attackers Steal Users’ OAuth Tokens

A serious security flaw in Visual Studio Code’s webview lets attackers take GitHub OAuth tokens. Thi…
TP-Link Router Flaw Enables Remote Command Execution Attacks

TP-Link has revealed a serious security problem in its Archer BE450 and Archer BE7200 Wi-Fi routers.…
ALERT
Google patches one exploited Android zero-day and 124 issues

Google has shared the June 2026 Android security updates to fix 124 flaws, including one zero-day is…
CISA warns two-year-old Oracle Vuln as actively exploited in attacks

CISA has given a new warning about a serious Oracle WebLogic Server flaw, named CVE-2024-21182, and …
Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

Many Instagram users lost access to their accounts because attackers tricked Meta’s AI support…

Feature

“InfoSecCon-2025″Draws Hundreds To Dhaka For Cyber Security insights

Wednesday , October 22 2025 Comments Off on “InfoSecCon-2025″Draws Hundreds To Dhaka For Cyber Security insights

A huge gathering eyed on the stage at “InfoSecCon-2025” (4th Edition) at Dhaka while different …
Read More »
“InfoSecCon-2025″ held successfully promising cyber resilience

Sunday , May 18 2025 Comments Off on “InfoSecCon-2025″ held successfully promising cyber resilience
Successfully held “InfoSecCon-2024″at Dhaka Bangladesh

Monday , October 28 2024 Comments Off on Successfully held “InfoSecCon-2024″at Dhaka Bangladesh
Navigating the Cyber Threat Landscape – Digital bank, Bangladesh perspective

Friday , May 31 2024 Comments Off on Navigating the Cyber Threat Landscape – Digital bank, Bangladesh perspective
Factors to shape unified data storage in 2024

Monday , December 25 2023 Comments Off on Factors to shape unified data storage in 2024

Malware Surge Hits Bangladesh: 55+ Strains Detected; 160+ Actively Spreading

1 week ago Comments Off on Malware Surge Hits Bangladesh: 55+ Strains Detected; 160+ Actively Spreading

More than 55 different types of malware were found last week, and over 160 malware …
Read More »
CIRT ALERT
New AsyncRAT malware campaign detected in Bangladesh cyber space

3 weeks ago Comments Off on CIRT ALERT
New AsyncRAT malware campaign detected in Bangladesh cyber space
BGD e-GOV CIRT offically colaborated with “Have I Been Pwned”

3 weeks ago Comments Off on BGD e-GOV CIRT offically colaborated with “Have I Been Pwned”
Bangladeshi “RapidLogX” Helps Unmask Real Scammers with 20+ Data Points

3 weeks ago Comments Off on Bangladeshi “RapidLogX” Helps Unmask Real Scammers with 20+ Data Points
NID, Bank Info, SMS Lists on Sale via Android App: Young Programmer Arrested in BD

4 weeks ago Comments Off on NID, Bank Info, SMS Lists on Sale via Android App: Young Programmer Arrested in BD

Anthropic Unveils Free Security Plugin for Claude Code Terminal to Detect Flaws

1 week ago Comments Off on Anthropic Unveils Free Security Plugin for Claude Code Terminal to Detect Flaws

Anthropic has released a tool that acts like a careful assistant in your terminal. This …
Read More »
CERT-In Recommends 12-Hour Patching for Internet Facing Flaws Amid AI Attacks

1 week ago Comments Off on CERT-In Recommends 12-Hour Patching for Internet Facing Flaws Amid AI Attacks
Hackers Use Middle East Telecoms for Large C2 Operations

2 weeks ago Comments Off on Hackers Use Middle East Telecoms for Large C2 Operations
Microsoft’s MDASH VS Anthropic’s Mythos VS OpenAI’s Daybreak

3 weeks ago Comments Off on Microsoft’s MDASH VS Anthropic’s Mythos VS OpenAI’s Daybreak
Google Identifies First AI-Generated Zero-Day Exploit

3 weeks ago Comments Off on Google Identifies First AI-Generated Zero-Day Exploit

ALERT
Google patches one exploited Android zero-day and 124 issues

2 days ago Comments Off on ALERT
Google patches one exploited Android zero-day and 124 issues

Google has shared the June 2026 Android security updates to fix 124 flaws, including one …
Read More »
Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

2 days ago Comments Off on Hackers Use Meta’s AI Bot to Take Over Instagram Accounts
ALERT
FortiClient EMS Code Execution Flaw Exploited to Deploy Malware

7 days ago Comments Off on ALERT
FortiClient EMS Code Execution Flaw Exploited to Deploy Malware
Microsoft patches SharePoint RCE flaw CVE-2026-45659 across servers

1 week ago Comments Off on Microsoft patches SharePoint RCE flaw CVE-2026-45659 across servers
FBI alerts on Kali365 phishing targeting Microsoft 365 accounts

1 week ago Comments Off on FBI alerts on Kali365 phishing targeting Microsoft 365 accounts

Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

2 days ago Comments Off on Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

Many Instagram users lost access to their accounts because attackers tricked Meta’s AI support tools …
Read More »
WhatsApp users on alert after hacker drops 3TB data

1 week ago Comments Off on WhatsApp users on alert after hacker drops 3TB data
FBI alerts on Kali365 phishing targeting Microsoft 365 accounts

1 week ago Comments Off on FBI alerts on Kali365 phishing targeting Microsoft 365 accounts
Malware Surge Hits Bangladesh: 55+ Strains Detected; 160+ Actively Spreading

1 week ago Comments Off on Malware Surge Hits Bangladesh: 55+ Strains Detected; 160+ Actively Spreading
ALERT
Trend Micro warns of zero-day exploit in Apex One: CISA adds to KEV

2 weeks ago Comments Off on ALERT
Trend Micro warns of zero-day exploit in Apex One: CISA adds to KEV

1-Click GitHub Token Flaw Allows Attackers Steal Users’ OAuth Tokens

24 hours ago Comments Off on 1-Click GitHub Token Flaw Allows Attackers Steal Users’ OAuth Tokens

A serious security flaw in Visual Studio Code’s webview lets attackers take GitHub OAuth tokens. …
Read More »
Anthropic confirms Claude Mythos-class models will be public

6 days ago Comments Off on Anthropic confirms Claude Mythos-class models will be public
Threat Actors Fake FIFA Sites to Steal Personal Info

6 days ago Comments Off on Threat Actors Fake FIFA Sites to Steal Personal Info
CVE-2026-25724
Terra Security researchers discovered Flaws in Anthropic’s Claude Code

1 week ago Comments Off on CVE-2026-25724
Terra Security researchers discovered Flaws in Anthropic’s Claude Code
“PyrsistenceSniper” Detects 117 Persistence Malware Methods for Windows, Linux, and macOS

2 weeks ago Comments Off on “PyrsistenceSniper” Detects 117 Persistence Malware Methods for Windows, Linux, and macOS

Cyber Attack

Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

2 days ago Comments Off on Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

Many Instagram users lost access to their accounts because attackers tricked Meta’s AI support tools …
Read More »
WhatsApp users on alert after hacker drops 3TB data

1 week ago Comments Off on WhatsApp users on alert after hacker drops 3TB data
FBI alerts on Kali365 phishing targeting Microsoft 365 accounts

1 week ago Comments Off on FBI alerts on Kali365 phishing targeting Microsoft 365 accounts

Alert

ALERT
Google patches one exploited Android zero-day and 124 issues

2 days ago Comments Off on ALERT
Google patches one exploited Android zero-day and 124 issues

Google has shared the June 2026 Android security updates to fix 124 flaws, including one …
Read More »
Hackers Use Meta’s AI Bot to Take Over Instagram Accounts

2 days ago Comments Off on Hackers Use Meta’s AI Bot to Take Over Instagram Accounts
ALERT
FortiClient EMS Code Execution Flaw Exploited to Deploy Malware

7 days ago Comments Off on ALERT
FortiClient EMS Code Execution Flaw Exploited to Deploy Malware

CVE-2025-24200
Apple releases update of zero-day vuln exploited in the Wild

Tuesday , February 11 2025 Comments Off on CVE-2025-24200
Apple releases update of zero-day vuln exploited in the Wild

Apple has issued emergency security updates to fix a zero-day vulnerability, CVE-2025-24200, which is being exploited in targeted attacks on iPhone and iPad users. The vulnerability lets attackers turn off USB Restricted Mode on a locked device, risking unauthorized access to sensitive data. Apple is aware that this issue may …

Zimbra Releases Updates for SQL Injection, XSS, and SSRF Vulns

Monday , February 10 2025 Comments Off on Zimbra Releases Updates for SQL Injection, XSS, and SSRF Vulns

Zimbra has released updates for its Collaboration software to fix critical security flaws that could lead to information disclosure if exploited. CVE-2025-25064 is a critical vulnerability with a CVSS score of 9.8. It is an SQL injection issue in the ZimbraSync Service SOAP endpoint, affecting versions before 10.0.12 and 10.1.4. …

CVE-2025-23369
SAML Bypass Auth on GitHub Enterprise Servers to Login

Monday , February 10 2025 Comments Off on CVE-2025-23369
SAML Bypass Auth on GitHub Enterprise Servers to Login

A serious security vulnerability, CVE-2025-23369, has been found in GitHub Enterprise Server (GHES) that lets attackers bypass SAML authentication and impersonate user accounts. This vulnerability takes advantage of specific anomalies in the libxml2 library employed in SAML response validation, allowing unauthorized access to accounts, even those with administrative rights. The …

Page 302 of 791« First...270 280 290 «300 301302303 304 »310 320 330...Last »

A serious security flaw in Visual Studio Code’s webview lets attackers take GitHub OAuth tokens. Thi…

TP-Link has revealed a serious security problem in its Archer BE450 and Archer BE7200 Wi-Fi routers.…

Google has shared the June 2026 Android security updates to fix 124 flaws, including one zero-day is…

CISA has given a new warning about a serious Oracle WebLogic Server flaw, named CVE-2024-21182, and …

Many Instagram users lost access to their accounts because attackers tricked Meta’s AI support…

Recent Posts