InfoSecBulletin Cybersecurity for mankind
Samsung released its monthly Android security updates, addressing a vulnerability exploited in zero-day attacks. CVE-2025-21043 (CVSS score: 8.8) is a vulnerability that allows an out-of-bounds write, potentially leading to arbitrary code execution. “Out-of-bounds Write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code,” Samsung …
Read More »TimeLine Layout
September, 2025
-
13 September
Albania appoints world’s first AI minister, “Diella” to Tackle Corruption
Albania has appointed the first AI-generated government minister to help eliminate corruption. Diella, the digital assistant meaning Sun, has been helping people use government services online since January. On Thursday, Prime Minister Edi Rama introduced a new digital minister to his cabinet. “Diella is the first [government] member who is …
Read More » -
11 September
L7 DDoS Botnet Hijacked 5.76M Devices for Large Attacks
On September 1, 2025, Qrator Lab identified and managed a major attack from the largest L7 DDoS botnet seen so far, targeting a government organization. A total of 5.76 million IP addresses were blocked. Qrator Labs has been tracking a botnet for months. The first attack occurred on March 26, …
Read More » -
11 September
Palo Alto Networks User-ID Credential Agent Vuln Exposes password In Cleartext
A new vulnerability, CVE-2025-4235, in Palo Alto Networks’ User-ID Credential Agent for Windows, could reveal a service account’s password in cleartext with specific configurations. The vulnerability has been rated as having medium severity. The primary danger lies in the potential for privilege escalation. The impact of the vulnerability varies depending …
Read More » -
11 September
CyberVolk Ransomware Attacks CII In Japan, France, and UK
CyberVolk ransomware, which appeared in May 2024, has increased attacks on government agencies and critical infrastructures in Japan, France, and the UK. CyberVolk, with pro-Russian views, targets countries seen as threats to Russia using advanced encryption that is very hard to break. This article analyzes CyberVolk’s encryption system, its execution …
Read More » -
10 September
Microsoft warns of active directory and office vulnarability
Microsoft has issued a new warning about a critical security vulnerability in Active Directory Domain Services, known as CVE-2025-21293. An attacker with initial access could exploit this flaw to increase their privileges, gaining full control over the domain controller and compromising the network’s security. The vulnerability is categorized as an …
Read More » -
10 September
(CVE-2025-10159)
Sophos Addressed Critical Auth Bypass flaw in Wireless Access Points
Sophos fixed an authentication bypass vulnerability in its AP6 Series Wireless Access Points, preventing attackers from obtaining admin privileges. The company found the issue during internal security tests and has issued a firmware update to fix it. An attacker with network access to the access point’s management IP can bypass …
Read More » -
10 September
1.6M fitness phone call recordings exposed online
Security researcher Jeremiah Fowler discovered a database containing sensitive information from gym customers and staff, including names, financial details, and possible phone call, left unencrypted and unprotected. Jeremiah Fowler claims he discovered the wide-open AWS repository managed by HelloGym in late July. The database was open for a week, and …
Read More » -
10 September
Microsoft September Patch Tuesday 2025 fixes 81 flaws, two zero-days
Microsoft patched September 2025 Patch Tuesday 81 flaws, including two publicly disclosed zero-day vulnerabilities. This Patch Tuesday addresses nine critical vulnerabilities: five for remote code execution, one for information disclosure, and two for privilege escalation. The number of bugs in each vulnerability category is listed below: 41 Elevation of Privilege …
Read More » -
9 September
Elastic Security Incident : Hackers Accessed Email Account Contains Valid Credentials
Elastic reported a security incident caused by a breach at Salesloft Drift, leading to unauthorized access to an internal email account with valid credentials. The company’s main Salesforce system was unaffected, but the incident revealed sensitive information in a few emails. Salesloft Drift reported a security incident affecting its platform …
Read More »