InfoSecBulletin Cybersecurity for mankind
CISA released the 2024 Priorities of the Joint Cyber Defense Collaborative (JCDC). These priorities will help the group focus on developing effective solutions to cybersecurity challenges.
Resulting from the trusted partnerships the collaborative has fostered, the focused goals of the 2024 priorities are to:
16,000+ Fortinet devices compromised with symlink backdoor, Mostly in Asia
By infosecbulletin
/ Friday , April 18 2025
According to Shadowserver Foundation around 17,000 Fortinet devices worldwide have been compromised using a new technique called "symlink". This number...
Read More
Patch now! Critical Erlang/OTP SSH Vuln Allows UCE
By infosecbulletin
/ Friday , April 18 2025
A critical security flaw has been found in the Erlang/Open Telecom Platform (OTP) SSH implementation, allowing an attacker to run...
Read More
CISA warns of increasing risk tied to Oracle legacy Cloud leak
By infosecbulletin
/ Thursday , April 17 2025
On Wednesday, CISA alerted about increased breach risks due to the earlier compromise of legacy Oracle Cloud servers, emphasizing the...
Read More
CVE-2025-20236
Cisco Patches Unauthenticated RCE Flaw in Webex App
By infosecbulletin
/ Thursday , April 17 2025
Cisco issued a security advisory about a serious vulnerability in its Webex App that allows unauthenticated remote code execution (RCE)...
Read More
Apple released emergency security updates for 2 zero-day vulns
By infosecbulletin
/ Thursday , April 17 2025
On Wednesday, Apple released urgent operating system updates to address two security vulnerabilities that had already been exploited in highly...
Read More
Oracle Released Patched for 378 flaws for April 2025
By infosecbulletin
/ Wednesday , April 16 2025
On April 15, 2025, Oracle released a Critical Patch Update for 378 flaws for its products. The patch update covers...
Read More
CVE-2025-24054
Hackers Exploiting NTLM Spoofing Windows Vuln the in Wild
By infosecbulletin
/ Wednesday , April 16 2025
Check Point Research warns of the active exploitation of a new vulnerability, CVE-2025-24054, which lets hackers leak NTLMv2-SSP hashes using...
Read More
Bengaluru firm got ransomware attack, Hacker demanded $70,000
By infosecbulletin
/ Wednesday , April 16 2025
Bengaluru's Whiteboard Technologies Pvt Ltd was hit by a ransomware attack, with hackers demanding a ransom of up to $70,000...
Read More
MITRE warns: U.S. Govt. Funding for MITRE’s CVE Ends Today
By infosecbulletin
/ Wednesday , April 16 2025
MITRE Vice President Yosry Barsoum warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness...
Read More
PwC exits more than a dozen countries in push to avoid scandals: FT reports
By infosecbulletin
/ Wednesday , April 16 2025
PwC has ceased operations in more than a dozen countries that its global bosses have deemed too small, risky or...
Read More
Defend against Advanced Persistent Threat (APT) operations.
Raise critical infrastructure’s cybersecurity baseline.
Anticipate emerging technology and risks.
CISA wants organizations to check JCDC’s 2024 Priorities and the related blog post by CISA Associate Director Clayton Romans. For more information on the collaborative’s work to secure cyberspace, visit CISA.gov/JCDC.
