InfoSecBulletin Cybersecurity for mankind
The Hikvision Security Response Center issued advisory revealing three critical vulnerabilities in HikCentral products. CVE identifiers CVE-2025-39245, CVE-2025-39246, and CVE-2025-39247 represent vulnerabilities with moderate to high severity, potentially allowing attackers to execute unauthorized commands, gain elevated privileges, or obtain administrative access. Summary: (1) There is a CSV Injection Vulnerability in …
Read More »TimeLine Layout
August, 2025
-
29 August
Salt Typhoon To Exploit Cisco, Palo Alto, Ivanti Flaws to Breach 600 Org Globally
The China-linked APT group Salt Typhoon is still attacking networks globally, focusing on telecommunications, government, transportation, hospitality, and military sectors. “While these actors focus on large backbone routers of major telecommunications providers, as well as provider edge (PE) and customer edge (CE) routers, they also leverage compromised devices and trusted …
Read More » -
28 August
Storm-0501 Deletes Data and Backups Post-Exfiltration on Azure in Hybrid Cloud Attacks
Storm-0501 has erased data and backups after stealing information from a victim’s Microsoft Azure environment in a new cloud based ransomware attack. Microsoft Threat Intelligence recently provided details of the tactics deployed by the actor tracked as Storm-0501 in a blog published on August 27. Sherrod DeGrippo, director of Microsoft …
Read More » -
28 August
Breaking the Passkey: SquareX Discloses Major Passkey Vulnerability at DEF CON 33
It is no secret that passwords are highly susceptible to phishing and brute force attacks. This led to the mass adoption of passkeys, a passwordless authentication method leveraging cryptographic key pairs that allows users to log in with biometrics or a hardware key. According to FIDO, over 15 billion accounts …
Read More » -
28 August
(CVE-2025-20241)
Cisco Warns of High-Severity Flaw in Nexus Switches
Cisco Systems released a security advisory about a critical denial-of-service vulnerability in the Nexus 3000 and 9000 Series Switches using NX-OS software. The flaw, identified as CVE-2025-20241 and rated 7.4 on the CVSS scale, can let an unauthenticated nearby attacker interrupt essential network services. Cisco explains that “a vulnerability in …
Read More » -
28 August
Malaysia Launches World’s First AI-powered Bank
Malaysia is boosting its digital transformation by launching its first fully AI-powered banking service. This initiative, which comes just before Merdeka, shows the country’s commitment to using advanced local technology to serve its citizens and enhance its global digital standing. YTL Group and SEA Ltd have launched Ryt Bank, the …
Read More » -
28 August
ShadowSilk Hits 35 Org in Asia and APAC Using Telegram Bots
Research by Group-IB has linked cyber-attacks on government organizations in Central Asia and the Asia-Pacific to a threat group called ShadowSilk. The activity started in 2023 and is still ongoing in July 2025, showing clear links to the YoroTrooper group. What’s different now is the size and structure of the …
Read More » -
27 August
Citrix patches critical NetScaler RCE flaw exploited in zero-day attacks
Citrix has issued fixes for three security vulnerabilities in NetScaler ADC and NetScaler Gateway, one of which is currently being exploited. The vulnerabilities in question are listed below: CVE-2025-7775 (CVSS score: 9.2): Memory overflow vulnerability leading to Remote Code Execution and/or Denial-of-Service CVE-2025-7776 (CVSS score: 8.8): Memory overflow vulnerability leading …
Read More » -
26 August
Why SIEM Rules Fail and How to Fix: Insights from 160M Attack Simulations
SIEM systems are essential for detecting suspicious activity in enterprise networks, enabling real-time responses to potential attacks. However, the Picus Blue Report 2025 indicates that organizations only detect 1 in 7 simulated attacks from over 160 million simulations, highlighting a serious gap in threat detection and response. Many organizations think …
Read More » -
26 August
CVE-2025-9074
Docker Fixes Critical Desktop flaw With CVSS Score 9.3
Docker has issued fixes for a critical security vulnerability in the Docker Desktop app for Windows and macOS that could enable an attacker to escape a container. The vulnerability CVE-2025-9074 has a CVSS score of 9.3 and is fixed in version 4.44.3. “A malicious container running on Docker Desktop could access …
Read More »