The Cyber Bulletins

A researcher discovered a flaw in Cloudflare’s CDN allowing attackers to estimate a person’s location (50-300 miles accuracy) by sending an image via apps like Signal or Discord. The zero-click attack exploits cached data center responses but is now partially mitigated after Cloudflare patched a related bug. However, using VPNs, the attack can still work in some cases, raising privacy concerns for journalists, activists, and others. Cloudflare, Discord, and Signal have downplayed responsibility for resolving the issue. #Cybersecurity #Cloudflare #PrivacyBreach #ZeroClickAttack #GeoLocation #Signal #Discord #TechVulnerability #thecyberbulletins

Ransomware groups are adopting new tactics to infiltrate corporate networks, leveraging email bombing and Microsoft Teams calls to trick employees into installing malware. Observed by Sophos researchers, these tactics have been linked to groups using FIN7 tools and techniques, such as Black Basta ransomware. #Ransomware #Cybersecurity #BlackBasta #FIN7 #MicrosoftTeams #EmailBombing #MalwareTactics #ThreatIntelligence #Infosec #thecyberbulletins

TikTok faces a shutdown in the US on January 19, 2025, after the Supreme Court upheld a law requiring ByteDance to sell its US operations over national security concerns. ByteDance has refused to sell, citing free speech violations, leaving 170 million US users and content creators scrambling for alternatives. The enforcement of the ban now falls to President-elect Trump, who has shown hesitance despite prior support. #TikTokBan #NationalSecurity #FreeSpeech #ByteDance #ContentCreators #USChinaRelations #SocialMedia #thecyberbulletins

The FCC has ordered U.S. telecom carriers to secure their networks following the Salt Typhoon cyberattacks, where a Chinese hacking group infiltrated major carriers like Verizon, AT&T, and Lumen. The hackers accessed private communications, including those of U.S. government officials. The FCC now requires annual cybersecurity certifications and compliance with the CALEA law to prevent similar breaches. Authorities are also considering banning China Telecom and TP-Link routers due to security concerns. #FCC #SaltTyphoon #Cybersecurity #TelecomSecurity #DataProtection #NationalSecurity #CyberThreats #USPolicy #ChinaHacking #thecyberbulletins

Max Schrems’ privacy group None of Your Business (noyb) has filed GDPR complaints against TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi. The complaints allege unlawful data transfers of European users’ information to China, violating GDPR Articles 44, 46, and 15. noyb demands immediate suspension of these transfers and compliance with EU privacy laws. Potential fines could reach billions for Xiaomi and Temu. GDPR #PrivacyRights #TikTok #DataProtection #CyberSecurity #noyb #TechRegulation #DataPrivacy #MaxSchrems #EUCompliance

The Federal Trade Commission (FTC) has mandated GoDaddy, a leading web hosting provider, to implement basic security measures such as multi-factor authentication (MFA) and HTTPS APIs to resolve allegations of inadequate security practices. These lapses, which date back to 2018, led to multiple breaches impacting millions of customers. #GoDaddy #Cybersecurity #DataBreach #FTC #WebHosting #MFA #SmallBusinessSecurity #thecyberbulletins

SAP has patched two critical flaws in NetWeaver Application Server as part of its January updates: CVE-2025-0070 (privilege escalation) and CVE-2025-0066 (information disclosure), both rated 9.9 severity. Additional fixes addressed high-severity issues like SQL injection (CVE-2025-0063) and session hijacking in BusinessObjects (CVE-2025-0061). SAP advises customers to apply updates promptly to protect critical systems used in industries like finance, healthcare, and manufacturing. #SAP #NetWeaver #Vulnerability #Cybersecurity #thecyberbulletins

The newly emerged hacking group “Belsen Group” has leaked configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices on the dark web. This data, organized by country and IP, includes sensitive information like private keys, firewall rules, and plain-text passwords. The leak is linked to a 2022 Fortinet vulnerability, CVE-2022-40684, exploited before a fix was issued. #FortiGate #DataLeak #CVE202240684 #Cybersecurity #DarkWeb #thecyberbulletins

SonicWall urges customers to patch a critical authentication bypass vulnerability (CVE-2024-53704, CVSS 8.2) affecting SSL VPN and SSH management in Gen 6, Gen 7, and TZ80 firewalls. Patches are now available, and immediate upgrades are advised to prevent exploitation. Additional vulnerabilities include weak PRNG, SSRF, and privilege escalation flaws. Administrators should restrict or disable internet access to management interfaces as a mitigation. #thecyberbulletins #CyberSecurity #Firewall #SonicWall #PatchNow #Vulnerability #SSLVPN #SSH

Ukrainian Cyber Alliance hacked and wiped Russian ISP Nodex, stealing sensitive data and leaving the network without backups. Nodex confirmed the attack, causing widespread service disruptions. Restoration efforts are ongoing. The UCA, active since 2016, has a history of targeting Russian organizations to counter aggression. #thecyberbulletins #CyberAttack #Hacktivism #Ukraine #Russia #CyberSecurity #ISP #UkrainianCyberAlliance