InfoSecBulletin Cybersecurity for mankind
Bad actor claimed to have leaked a database of Facebook users from 2024. The database has 100,000 lines of data with names, profiles, emails, phone numbers, registration dates, and locations. If the claim is true, users are at risk due to the leak. They might be victims of identity theft, …
Read More »TimeLine Layout
June, 2024
-
6 June
CISA Releases Four Industrial Control Systems Advisories
CISA released four advisories about Industrial Control Systems (ICS) on June 4, 2024. These advisories contain important information about security issues, vulnerabilities, and exploits related to ICS. ICSA-24-156-01 Uniview NVR301-04S2-P4 ICSA-23-278-03 Mitsubishi Electric CC-Link IE TSN Industrial Managed Switch (Update A) ICSA-22-172-01 Mitsubishi Electric MELSEC iQ-R, Q, L Series and …
Read More » -
6 June
BB published guidelines on Licensing, Operation, and Regulation of Credit Bureau
Bangladesh Bank has published the “Guidelines on Licensing, Operation, and Regulation of Credit Bureau”. This policy is being created to comply with Article 82 of the Bangladesh Bank Order, 1972. It aims to incorporate modern technologies such as Artificial Intelligence and Machine Learning in credit risk assessment. This will …
Read More » -
5 June
NSA Warns iPhone & Android Users to Restart Devices Weekly
The NSA advises iPhone and Android users to restart their devices weekly for better security against cyber threats. The NSA suggests in a document that regularly restarting devices is a simple and effective way to reduce the risk of cyberattacks. This advice is especially relevant due to the rising complexity …
Read More » -
5 June
361 Million Unique Email Credentials Leaked On Telegram
A big data breach was found with a combolist containing 122GB of data containing 361 million unique email addresses taken from thousands of Telegram channels. The dataset contains passwords and websites linked to them. It reveals a lot of new data that has been added to the breach alert service …
Read More » -
5 June
Resecurity blog
V3B phishing kit targets customers of EU 54 banks
Cybercriminals are using Telegram to advertise a new phishing kit called ‘V3B’. This kit is currently aimed at customers of 54 big financial institutions in Ireland, the Netherlands, Finland, Austria, Germany, France, Belgium, Greece, Luxembourg, and Italy. The phishing kit costs between $130 and $450 per month. It includes …
Read More » -
5 June
Zyxel Releases Patches for Firmware Vulnerabilities
Zyxel has released patches addressing command injection and remote code execution vulnerabilities in two NAS products that have reached end-of-vulnerability-support. Users are advised to install them for optimal protection. Three out of five vulnerabilities could allow an unauthorized attacker to run operating system commands and arbitrary code on affected installations. …
Read More » -
4 June
Microsoft India X Account Hacked: Media reported
With over 211,000 followers, the official Microsoft India account on Twitter was hijacked by cryptocurrency scammers impersonating Roaring Kitty. This account has a gold check mark as an officially verified organization. The threat actors take advantage of Gill’s recent comeback to lure potential victims and infect them with cryptocurrency wallet …
Read More » -
4 June
CISA Adds ORACLE WEBLOGIC SERVER FLAW TO ITS KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added Oracle WebLogic Server to the Known Exploited Vulnerabilities (KEV) catalog. CVE-2017-3506 is an operating system (OS) command injection vulnerability which could be exploited to obtain unauthorized access as well as the full control. “Oracle WebLogic Server, a product within the …
Read More » -
2 June
A Plan to Protect Critical Infrastructure from 21st Century Threats
On April 30th, the White House released National Security Memorandum-22 (NSM) on Critical Infrastructure Security and Resilience to update national policy on protecting and securing critical infrastructure from cyber and all-hazard threats. The memorandum recognizes the changed risk landscape and aims to collaborate with partners to identify and reduce sector, …
Read More »
