InfoSecBulletin Cybersecurity for mankind
Three emerging threats will be discussed below, along with how sandbox analysis can be utilized to detect them proactively. Lockbit Ransomware: The Lockbit ransomware is a major cybersecurity threat that appeared in 2019. It works as Ransomware-as-a-Service (RaaS), where affiliates use its software to carry out attacks. The Royal Mail …
Read More »TimeLine Layout
July, 2024
-
9 July
AVAST RELEASED DECRYPTOR FOR DONEX RANSOMWARE
Avast researchers found a security flaw in the DoNex ransomware and its previous versions, which allowed them to create a tool to decrypt the files. They shared this discovery at the Recon 2024 conference. Avast released a free decryptor in March 2024 to help victims recover their files. “All brands …
Read More » -
9 July
Critical Security Advisory for Apache CloudStack
The Apache Software Foundation has warned about two serious security issues (CVE-2024-38346 and CVE-2024-39864) in Apache CloudStack, a popular open-source cloud computing platform. These vulnerabilities are a big threat to organizations using CloudStack to manage their virtualized infrastructure. Unauthenticated Cluster Service Port (CVE-2024-38346) The vulnerability CVE-2024-38346 is found in the …
Read More » -
9 July
8 cyber agencies warn APT40’s Rapid Exploit Adaptation
Cybersecurity agencies from Australia, Canada, Germany, Japan, New Zealand, South Korea, the UK, and the US issued a warning about a cyber espionage group called APT40, which is linked to China. The advisory cautions about the group’s capability to quickly and effectively use security flaws that are recently disclosed. “APT …
Read More » -
9 July
CISA Plans to Measure Trust in Open-Source Software
The United States cyber defense agency is creating a new framework to answer a critical question in cybersecurity: How can the trustworthiness of open-source security projects be accurately measured and transparently communicated? The Cybersecurity and Infrastructure Security Agency is working on the second phase of its open-source software security road …
Read More » -
8 July
A Hacker Stole OpenAI Secrets: New York Times
In early 2021, a hacker infiltrated OpenAI’s internal messaging systems and obtained information about the design of the company’s AI technologies. The hacker stole information from an online forum where OpenAI employees discussed their latest technologies. However, the hacker was unable to access the systems where the company stores and …
Read More » -
8 July
BDSec CTF 2024! registration starts
So, get Ready for BDSec CTF 2024! Knight squad call you to mark your calendar for 20 July 2024 at 09:00 PM (Bangladesh Time). This is your chance to showcase your cybersecurity skills and compete with the best minds from around the world. 🌐 Register Now: bdsec-ctf.com 🕒 Date: 20 …
Read More » -
8 July
CVE-2024-6387
Cisco Confirms OpenSSH regreSSHion Flaw in Multiple Products
Cisco warned about a serious security issue called “regreSSHion” (CVE-2024-6387) that affects the OpenSSH server in some Cisco products and cloud services. This could let unauthorized attackers run their own code on affected systems, possibly taking full control of the system. The following table lists Cisco products that are affected …
Read More » -
8 July
Threat Actors Exploit Microsoft SmartScreen Vulnerability: Cyble
Cyble Analyzes An Active Campaign Exploiting A Microsoft SmartScreen Vulnerability To Deliver Stealers Via Spam Emails. Key findings: * Cyble Research and Intelligence Labs (CRIL) recently came across an active campaign exploiting the Microsoft SmartScreen vulnerability (CVE-2024-21412). * The ongoing campaign targets multiple regions, including Spain, the US, and Australia. …
Read More » -
7 July
RockYou2024: Massive 10-Billion Password Leak
A huge collection of passwords, containing almost ten billion unique passwords, was leaked on a popular hacking forum. The Cybernews research team warns that this leak could seriously endanger users who tend to reuse. Cybernews researchers found the biggest password collection with 9,948,575,739 unique passwords. It was posted as a …
Read More »
