Blog – InfoSecurity Compliance

Standard

MOVEit Transfer SQL Injection Vulnerability CVE-2023-34362

On 31, May, 2023 organization name as Progress found a critical vulnerability in Moveit Transfer environment which provide the unauthorized access to attacker. MOVEit Transfer is designed to securely transfer files within or between organizations. MOVEit offers a centralized platform for managing file transfers, providing security, compliance, and automation features. Researchers noticed that human2.aspx file

Standard

Open AI Web cache deception vulnerability

Security researchers, found a critical account takeover vulnerability in the OpenAI ChatGPT application that allowed an attacker to take over someone’s account, access their chat history, and view their billing information without their knowledge. The issue was reported by a security researcher who explored the authentication flow in ChatGPT’s requests and discovered an anomaly in

Standard

Mustang Panda APT Targets Europe with Plugx Malware

Mustang Panda Mustang Panda is a China-based cyber espionage threat actor that was first observed in 2017 but may have been conducting operations since at least 2014. Mustang Panda has targeted government entities, nonprofits, religious, and other non-governmental organizations in the U.S., Europe, Mongolia, Myanmar, Pakistan, and Vietnam, among others. Recently,the group has shifted from

Standard

The Mobile App of Car made hackers remotely open and start cars.

Sam Curry, a cyber security expert, revealed last week on Twitter that he and his team had found a security flaw in a service offered by SiriusXM Connected Vehicle Services. Various elements of convenience, security, and safety are made possible through the software suite known as SiriusXM Connected Vehicle Services, which is offered to connected