InfoSecBulletin Cybersecurity for mankind
In the advent of Eid ul-Adha holidays, Bangladesh Government’s Computer Incident Response Team (BGD e-GOV CIRT) would like to ensure the security of the critical information infrastructures (CII), banks and financial institutions, health care and all sorts of government and private organizations by sharing a list of top threats to …
Read More »TimeLine Layout
June, 2023
-
25 June
Again! Two big airlines disclosed data breaches
American Airlines and Southwest Airlines, two of the largest airlines in the world, disclosed on Friday that their data had been breached. The breach was caused by a hack of Pilot Credentials, a third-party vendor that manages pilot applications and recruitment portals for multiple airlines. The breach affected 5745 pilots …
Read More » -
25 June
Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam
Joseph James O’Connor, a 24-year-old British citizen, was sentenced to five years in prison in the United States for his role in the July 2020 Twitter hack. O’Connor, who went by the online alias “PlugwalkJoe,” pleaded guilty to criminal schemes that included unauthorized access to Twitter’s backend tools, SIM swapping …
Read More » -
24 June
CISA orders to patch iPhone bugs abused in spyware attacks
Today, CISA ordered federal agencies to patch recently patched security vulnerabilities exploited as zero-days to deploy Triangulation spyware on iPhones via iMessage zero-click exploits. The warning comes after Kaspersky published a report detailing a Triangulation malware component used in a campaign it tracks as “Operation Triangulation.” Kaspersky says it found …
Read More » -
24 June
Daily Cybersecurity Update, June-23, 2023
An unsecured database belonging to RateForce ended up exposing 93.93 GB of personal information of users. This is a reminder to secure your cloud buckets. We also have two more victims of the MOVEit ransomware attack.ย This time, it is the largest public pension fund in the U.S. and an insurance …
Read More » -
23 June
Critical vulnerability in Fortinet FortiNAC, allow attackers taking control of systems
Cybersecurity solutions company Fortinet has updated its zero-trust access solution FortiNAC to address a critical-severity vulnerability that attackers could leverage to execute code and commands. FortiNAC is a allows organizations to manage network-wide access policies, gain visibility of devices and users, and secure the network against unauthorized access and threats. …
Read More » -
23 June
Meta stops news post & sharing in Facebook, Instagram in Canada
Facebook and Instagram users in Canada cannot share news on these two platforms. Meta, the company that owns the two social media, said that the Canadian government is going to stop the news feature due to the new law. In addition to Facebook and Instagram, the new law will also …
Read More » -
22 June
Alert: Million of GitHub Repositories Likely Vulnerable to RepoJacking Attack
Millions of software repositories on GitHub are likely vulnerable to an attack called RepoJacking, a new study has revealed. This includes repositories from organizations such as Google, Lyft, and several others, Massachusetts-based cloud-native security firm Aqua said in a Wednesday report. The supply chain vulnerability, also known as dependency repository …
Read More » -
22 June
BUET host inter-University CTF Competition, Registration open
๐๐๐๐ ๐๐๐ ๐ ๐๐ฌ๐ญ is bringing you for the first time an exhilarating and intellectually stimulating ๐๐ง๐ญ๐๐ซ ๐๐ง๐ข๐ฏ๐๐ซ๐ฌ๐ข๐ญ๐ฒ ๐๐๐ฉ๐ญ๐ฎ๐ซ๐ ๐๐ก๐ ๐ ๐ฅ๐๐ (๐๐๐ ) ๐๐จ๐ฆ๐ฉ๐๐ญ๐ข๐ญ๐ข๐จ๐ง. This event is designed to challenge the brightest minds from universities across the region and provide them with an opportunity to showcase their cyber security skills. Whether you …
Read More » -
22 June
Who are behind ChatGpt data breach? Here goes detail
Refuting the ChatGPT Data Breach OpenAI, the parent company of ChatGPT, has refuted a report by Group-IB that alleges a data breach of the AI software. Group-IB reported that over 100,000 infected devices were housing ChatGPT hacked credentials. However, OpenAI claims that the credential leak was due to “existing commodity …
Read More »