InfoSecBulletin Cybersecurity for mankind
A hacktivist group named “Team Network Nine” claimed a cyber attack on “Bangladesh Space Research and Remote Sensing Organization (SPARSO). The group claimed that the December 1 attack resulted in Sparrso’s website being down for 1 hour. An Indian media reported on the issue. According to the report, the hacktivist …
Read More »TimeLine Layout
December, 2023
-
5 December
vulncheck report
15,000 Go Module Repositories on GitHub Vulnerable to Repojacking Attack
15,000 Go module repositories on GitHub are vulnerable to repojacking attack, according to new research. VulnCheck chief technology officer jacob Baines shared a report with renowned newspaper where he said, “More than 9,000 repositories are vulnerable to repojacking due to GitHub username changes, “More than 6,000 repositories were vulnerable to …
Read More » -
5 December
Blog post update
Microsoft warns of exploiting critical outlook vulnerability
Microsoft has found a group called Forest Blizzard (also known as STRONTIUM) in Russia using a security vulnerability called CVE-2023-23397 to get into email accounts on Exchange servers without permission. The Polish Cyber Command (DKWOC) is working with Microsoft to stop Forest Blizzard and prevent them from using their tricks. …
Read More » -
4 December
CID formed a 8-member CIRT team
CID computer incident response team (CID-CIRT) has been formed to counter cyber attacks and respond to cyber incidents at the earliest. The eight-member team includes the police as well as project director and incident handlers from BGD e-Gov CIRT. The members are, Special Superintendent of Police Shibli Kaiser, Inspector of …
Read More » -
3 December
ShadowServer Foundation
About 20,000 Microsoft Exchange Servers at Risk of Cyberattacks
A lot number of microsoft Exchange email servers in Europe, the United States, and Asia are at risk because they are accessible on the public internet. These servers are using an old and unsupported version of the software, which makes them vulnerable to multiple security issues, including some that are …
Read More » -
2 December
Zyxel releases patches to Fix 15 Flaws NAS, Firewall, and AP Devices
Zyxel released patches for 15 security issues affecting network-attached storage (NAS), firewall, and access point (AP) devices. The fixes address critical flaws that could allow authentication bypass and command injection. The three vulnerabilities are listed below : CVE-2023-35138 (CVSS score: 9.8): There is a vulnerability that allows an attacker to …
Read More » -
2 December
Daily Cybersecurity update, December 01, 2023
In the digital age, attacks have been generated in every seconds in every corner of the work. Here are the 5 notable happenings in the world in cyber industry: Booking.com reported customers have been targeted by hackers. While the agency’s systems are secure, online criminals have scammed many customers by …
Read More » -
1 December
Secureworks reports
Booking.com hackers intensify attacks on customers
Booking.com, a major online travel agency, reported that customers have been targeted by hackers. While the agency’s systems are secure, online criminals have scammed many customers by stealing login credentials from the agency’s partner hotels. These criminals then pose as hotel staff to deceive customers. What have the online attacks …
Read More »
November, 2023
-
30 November
Exclude 21 institutions
Bangladesh Bank released list of valid 31 audit firms
On Tuesday (November 28), Bangladesh Bank has released the list of 31 audit firms qualified to audit the financial reports of banks and non-bank financial institutions. The names of 47 institutions were last published in June 2021. Some institutions were not included in the new list due to various allegations …
Read More » -
30 November
Daily Cybersecurity update, November 29, 2023
5 notable happenings in the world in cyber industry: *The Space Exploration Agency of Japan jaxa experienced a cyber incident. They suspect that there was a breach in their Active Directory implementation. To control the attack, they shut down a section of their network and intranet. * Zimperium researchers found …
Read More »