InfoSecBulletin Cybersecurity for mankind
Sophos has fixed three separate security vulnerabilities in Sophos Firewall. The vulnerabilities CVE-2024-12727, CVE-2024-12728, and CVE-2024-12729 present major risks, such as remote code execution and privilege escalation.
AMD Patches CPU Vulnerability
By infosecbulletin
/ Wednesday , February 5 2025
AMD announced patches on Monday for a microprocessor vulnerability that risks the loss of Secure Encrypted Virtualization (SEV) protection, potentially...
Read More
Hackers To Use HTTP Client Tools To Compromise Microsoft 365 Accounts
By infosecbulletin
/ Wednesday , February 5 2025
Hackers are using HTTP client tools for advanced account takeover attacks on Microsoft 365. Seventy-eight percent of Microsoft 365 tenants...
Read More
Google patches 47 Android flaws, Including Actively Exploited CVE-2024-53104
By infosecbulletin
/ Wednesday , February 5 2025
Google has released patches for 47 security flaws in Android, including one that is actively being exploited. CVE-2024-53104 (CVSS score: 7.8)...
Read More
CVE-2025-21415
Microsoft Patches Critical Azure AI Face Service Vulnerability
By infosecbulletin
/ Tuesday , February 4 2025
Microsoft has released patches for two critical security flaws in Azure AI Face Service and Microsoft Account that could allow...
Read More
Daily Security Update Dated:4.02.2025
By infosecbulletin
/ Tuesday , February 4 2025
Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so...
Read More
768 Exploited CVEs in 2024, a 20% Increase from 639 in 2023
By infosecbulletin
/ Tuesday , February 4 2025
In 2024, 768 vulnerabilities with CVE identifiers were reported as exploited in the wild, a 20% increase from 639 in...
Read More
.Gov Domains Weaponized in Phishing Surge
By infosecbulletin
/ Monday , February 3 2025
A recent report from Cofense Intelligence highlights a concerning trend: threat actors are increasingly misusing .gov top-level domains (TLDs) to...
Read More
RedSentry presents
Hacked 101 Seminar Successfully Ended at UITS
By infosecbulletin
/ Sunday , February 2 2025
The cybersecurity seminar "RedSentry presents: Hacked 101," organized by RedSentry with the University of Information Technology and Sciences (UITS) as...
Read More
US scientists claim to replicate DeepSeek for $30 dubbed “TinyZero,”
By infosecbulletin
/ Sunday , February 2 2025
Researchers at the University of California, Berkeley, claims they’ve managed to reproduce the core technology behind DeepSeek’s at a total...
Read More
ChatGPT, DeepSeek, Qwen 2.5-VL Vulnerable to AI Jailbreaks
By infosecbulletin
/ Sunday , February 2 2025
This week, multiple research teams showcased jailbreaks for popular AI models, including OpenAI's ChatGPT, DeepSeek, and Alibaba's Qwen. After its...
Read More
Applies to the following Sophos product(s) and version(s):
Sophos Firewall v21.0 GA and earlier
No action is needed for Sophos Firewall customers who have the “Allow automatic installation of hotfixes” feature enabled in the remediated versions. This setting is enabled by default.
Sophos has not seen these vulnerabilities exploited yet at this time.
Kaspersky reveals active exploitation of Fortinet Vulnerability
