Welcome to your ONSEC Cyber Daily dose for October 18th. Today, we're diving deep into the world of cybersecurity, exploring the critical role of VAPT in fortifying our digital defenses. With over 72% of organizations worldwide falling victim to at least one ransomware attack, the need for robust security measures has never been more apparent. We'll also be discussing the future of cybersecurity and why automation is becoming an essential tool in the fight against cyber threats. Misconfigured firewalls, overlooked vulnerabilities, or missed alerts can create opportunities for cybercriminals to infiltrate even the most secure systems. In other news, the U.S. has indicted members of Russia's GRU Unit 29155 for cyberattacks on Ukraine, highlighting the ever-present geopolitical implications of cybersecurity. Meanwhile, India's cyber security agency has issued a 'high' risk warning for Mozilla Firefox users due to a critical vulnerability. We'll also be covering a range of critical vulnerabilities and patches, from GitHub and Kubernetes to Solarwinds and VMware. It's a reminder of the constant vigilance required to keep our systems secure. Finally, we'll be sharing insights from some of the latest cybersecurity podcasts, featuring experts from Rubrik, Lockton, and the FBI. They'll be exploring the threat landscape and offering advice on how to navigate it. Stay tuned for all this and more in today's ONSEC Cyber Daily. Stay safe, stay informed.

Exploits Alert

1. The Critical Role of Vulnerability Assessment & Penetration Testing (VAPT) in Cybersecurity: The Tech Panda highlights the increasing prevalence of cyberthreats, with over 72% of organizations worldwide experiencing at least one ransomware attack. The article emphasizes the importance of Vulnerability Assessment & Penetration Testing (VAPT) in identifying and mitigating these threats. Source: The Tech Panda
2. The Future of Cybersecurity: Why Automation is Critical for Enterprise Security: Breaking AC discusses the critical role of automation in enterprise security. The article points out that overlooked vulnerabilities or misconfigured firewalls can provide opportunities for cybercriminals, emphasizing the need for automated systems to prevent such oversights. Source: Breaking AC
3. Critical GitHub Vulnerability Advisory: The Cyber Express reports on a critical vulnerability in GitHub, urging users to take immediate action to secure their accounts. The article also mentions the indictment of members of Russia's GRU Unit 29155 for cyberattacks on Ukraine. Source: The Cyber Express
4. India's Cyber Security Agency Issues 'High' Risk Warning for Mozilla Firefox Users: CERT-In, India's cybersecurity agency, has issued a high-risk warning for Mozilla Firefox users due to a critical vulnerability identified as CVE-2024-9680. Users are advised to update their browsers to the latest version to mitigate the risk. Source: MSN

Vulnerabilities & Patches

1. Critical root vulnerability in Kubernetes (CVE-2024-9594): A critical root vulnerability has been identified in Kubernetes, with a patch now available. However, the patch does not repair already deployed VM images. Users are advised to apply the patch and monitor their systems for any unusual activity. Source: heise online
2. Kubernetes Image Builder Vulnerability (CVE-2024-9486): A significant risk has been identified in the Kubernetes Image Builder. Organizations are urged to update to the latest version of the Image Builder, implement recommended mitigation strategies, and continuously monitor their systems. Source: The Cyber Express
3. Solarwinds Platform Vulnerabilities (CVE-2024-45710): Several vulnerabilities have been identified in the Solarwinds platform and Serv-U, enabling malicious code smuggling. Patches are available, and users are advised to apply them immediately. Source: heise online
4. Ivanti CSA Security Vulnerability (CVE-2024-9381): Ivanti has released an official patch to address CVE-2024-9381, along with related vulnerabilities affecting CSA. Users are advised to apply the patch immediately. Source: Security Boulevard
5. VMware High-Severity SQL Injection Flaw (CVE-2024-38814): VMware has patched a high-severity SQL injection flaw in its HCX platform. Attackers with non-administrator privileges can execute remote code on the HCX manager. Users are advised to apply the patch immediately. Source: SecurityWeek

Podcasts

1. Exploring the threat landscape and how to navigate it, with Rubrik CISO Michael: In this episode of the Cyber Uncut podcast, Michael Mestrovich, chief information security officer at data security firm Rubrik, discusses the current threat landscape and how businesses can navigate it. Source: CyberDaily
2. AGG Talks: Cross-Border Business Podcast - Episode 20: Mastering ITC Section 337 Investigations: Mike Burke, AGG Corporate partner, and Andrew Beverina, AGG Litigation, discuss ITC Section 337 Investigations in this episode. They provide insights into cross-border business operations. Source: JDSupra
3. Executive Perspectives, Episode 2, Michelle Faylo - Security Boulevard: Axio CEO, Scott Kannry, interviews Michelle Faylo, US Cyber & Technology Leader of Lockton, in this episode of Executive Perspectives. They discuss the current state of cybersecurity and technology. Source: Security Boulevard
4. Ahead of the Threat Podcast: Episode Zero - YouTube: The FBI's new podcast miniseries, Ahead of the Threat, brings together an FBI cyber executive and a private sector chief to discuss cybersecurity threats and how to stay ahead of them. Source: YouTube
5. Workplace Law After 'Loper': Will Organizations Face a Wider Regulatory Gap Between ...: This episode of the Workplace Law After Loper podcast series discusses the potential for a wider regulatory gap between conflicting data privacy and security laws. Source: Jackson Lewis

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We've covered everything from the critical role of Vulnerability Assessment & Penetration Testing (VAPT) in cybersecurity, to the latest vulnerability advisories and patches, and even some insightful cybersecurity podcasts. Remember, in this digital age, staying updated is your first line of defense. So, don't forget to share this newsletter with your friends and colleagues. Let's spread the knowledge and stay one step ahead of the cyber threats. Stay safe, stay informed, and see you in the next edition of ONSEC Cyber Daily.