InfoSecBulletin Cybersecurity for mankind
Several European airports are experiencing flight delays and cancellations due to a cyber attack on a check-in and boarding systems service provider. The attack has made automated systems unusable, forcing only manual check-in and boarding, says Brussels Airport. Heathrow and Berlin airports reported that the attack disrupted flights, advising passengers …
Read More »TimeLine Layout
September, 2025
-
17 September
Hacker claim to breach Link3; 189,000 Users data up for sale
A threat actor claims to have breached Link3, a major IT solutions and internet service provider based in Bangladesh. The data has been put up for sale on a dark web forum. According to the forum post: Link3 is the largest ISP in the country by active subscribers, offering essential …
Read More » -
17 September
Check Point Hosts “Securing the Hyperconnected World in the AI Era” in Dhaka
Check point, a cyber security solutions provider hosts an event titled “securing the hyperconnected world in the AI era” at Dhaka today. 150+ participants from different sectors of Bangladesh including Bank, Telco, enterprise and so on attend the event. The event was categorized in two parts including an engagement session …
Read More » -
16 September
Microsoft Confirms 900+ XSS Vulns Found in IT Services
Cross-Site Scripting (XSS) is one of the oldest and most persistent vulnerabilities in modern applications. Despite being recognized for over 20 years, it still affects both legacy systems and new cloud-native architectures. The Microsoft Security Response Center (MSRC) noted that the threat of XSS remains significant, as it regularly receives …
Read More » -
15 September
Daily Security Update Dated : 15.09.2025
Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so on. Its our daily security digest to cover the latest happenings in the world. Spend a bit time to read out todays update: 01. DarkCloud Stealer is targeting financial firms …
Read More » -
15 September
IBM QRadar SIEM Vuln Let Attackers Perform Unauthorized Actions
A critical permission misconfiguration in the IBM QRadar Security Information and Event Management (SIEM) platform could allow local privileged users to manipulate configuration files without authorization. The flaw, identified as CVE-2025-0164, results from incorrect permission assignments and has a CVSS 3.1 score of 2.3 AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N). Incorrect Permission Assignment Flaw: The …
Read More » -
15 September
Major Australian Banks using Army of AI Bots to Scam Scammers
Australian banks are now using bots to combat scammers. These bots mimic potential victims to gather real-time information and drain scammers’ resources. The collected data is sent to fraud detection systems used by banks, telecom companies, and government agencies. On June 27, Commonwealth Bank of Australia launched 10,000 AI bots …
Read More » -
13 September
F5 to acquire CalypsoAI for $180M for Advanced AI Security Capabilities
F5 plans to acquire CalypsoAI, which offers adaptive AI security solutions. CalypsoAI’s technology will be added to F5’s Application Delivery and Security Platform (ADSP). CalypsoAI, established in 2018, provides real-time protection for AI applications against threats like prompt injection and jailbreaking. Their platform offers defense, red teaming, and data security …
Read More » -
13 September
AI Pentesting Tool ‘Villager’ Merges Kali Linux with DeepSeek AI for Automated Attacks
The Villager framework, an AI-powered penetration testing tool, integrates Kali Linux tools with DeepSeek AI to automate cyber attack processes. Developed by the Chinese group Cyberspike, it was released on the Python Package Index in July 2025 and quickly gained over 10,000 downloads in two months. Villager marks a major …
Read More » -
13 September
CVE-2025-21043
Samsung Patched Critical Zero-Day Flaw Exploited in Android Attacks
Samsung released its monthly Android security updates, addressing a vulnerability exploited in zero-day attacks. CVE-2025-21043 (CVSS score: 8.8) is a vulnerability that allows an out-of-bounds write, potentially leading to arbitrary code execution. “Out-of-bounds Write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code,” Samsung …
Read More »