ONSEC: Boutique Penetration Testing Agency

Sign in Subscribe

ONSEC.io Research Team

ONSEC.io Research Team

Cyber Daily 4/9: WhatsApp Users Warned of Hacking Risk, CyberSmart Expert Weighs In; CISA Alerts on Zoom, Ivanti, and Google Vulnerabilities; Patch Tuesday Reveals 121 Microsoft Flaws

Cyber Daily 4/9: WhatsApp Users Warned of Hacking Risk, CyberSmart Expert Weighs In; CISA Alerts on Zoom, Ivanti, and Google Vulnerabilities; Patch Tuesday Reveals 121 Microsoft Flaws

Welcome to the latest issue of ONSEC Cyber Daily. Today, we're diving into a series of critical alerts and warnings that have been issued across the cyber landscape. First up, WhatsApp users are being urged to update their settings to avoid falling victim to potential hacks. This warning

Cyber Daily 4/8: ToddyCat Exploits ESET Vulnerability, WinRAR Flaw Bypasses Windows Security, Python JSON Logger Vulnerability Exposed, Google Patches Android Zero-Days

Cyber Daily 4/8: ToddyCat Exploits ESET Vulnerability, WinRAR Flaw Bypasses Windows Security, Python JSON Logger Vulnerability Exposed, Google Patches Android Zero-Days

Welcome to your daily dose of ONSEC Cyber Daily. Today, we delve into the world of cyber vulnerabilities and the relentless efforts of cybercriminals to exploit them. We kick off with the ToddyCat APT group, who have cleverly exploited a vulnerability in ESET's Command Line Scanner to conceal

Cyber Daily 4/7: High-Risk Alert for Google Chrome Users, 200M Records Exposed in Massive Breach, Palo Alto Networks Probed, Ivanti Vulnerability Patched, Cisco Utility Exploited

Cyber Daily 4/7: High-Risk Alert for Google Chrome Users, 200M Records Exposed in Massive Breach, Palo Alto Networks Probed, Ivanti Vulnerability Patched, Cisco Utility Exploited

Hello ONSEC readers, Welcome to today’s edition of ONSEC Cyber Daily, where we spotlight the latest high-risk alerts, massive data breaches, and critical vulnerabilities shaking the cybersecurity landscape. First, a high-risk alert has been issued for Google Chrome users, urging immediate updates to defend against escalating threats. Cyber hygiene

Cyber Daily 4/4: Chinese Hackers Exploit Ivanti Vulnerability, Cisco CSLU Flaw Under Attack, WinRAR and Google Quick Share Vulnerabilities, Australia-Philippines Cybercrime Partnership

Cyber Daily 4/4: Chinese Hackers Exploit Ivanti Vulnerability, Cisco CSLU Flaw Under Attack, WinRAR and Google Quick Share Vulnerabilities, Australia-Philippines Cybercrime Partnership

Good morning ONSEC Cyber Daily readers! Today's newsletter is packed with critical updates and alerts that you can't afford to miss. Chinese hackers are on the prowl, actively exploiting an Ivanti Connect Secure vulnerability. Meanwhile, Cisco is sounding the alarm over the active exploitation of a

Cyber Daily 4/3: Critical CrushFTP Vulnerability Exploited, Apple's iOS 18.4 Security Alert, Ivanti Bug Alert by CISA, NSA Warns iPhone and Android Users, Canon Printer Drivers Vulnerability, Kaspersky Patches Chrome Flaw

Cyber Daily 4/3: Critical CrushFTP Vulnerability Exploited, Apple's iOS 18.4 Security Alert, Ivanti Bug Alert by CISA, NSA Warns iPhone and Android Users, Canon Printer Drivers Vulnerability, Kaspersky Patches Chrome Flaw

Welcome to the latest issue of ONSEC Cyber Daily! Today, we're diving into a series of critical vulnerabilities and security warnings that are making waves in the cybersecurity world. First up, we're looking at the ongoing intrusions involving the CrushFTP vulnerability, a critical issue that'

Cyber Daily 4/2: Cowbell's Cybersecurity Expansion, Malaysian Airport Ransomware Alert, Kentico Xperience CMS XSS Vulnerability, Apple's 0-Day Warnings, Cisco and Apple CVE Updates

Cyber Daily 4/2: Cowbell's Cybersecurity Expansion, Malaysian Airport Ransomware Alert, Kentico Xperience CMS XSS Vulnerability, Apple's 0-Day Warnings, Cisco and Apple CVE Updates

Welcome to the ONSEC Cyber Daily for April 2nd! Today, we're diving into a whirlwind of cybersecurity updates and alerts. We start with Cowbell's expansion of its cybersecurity platform, integrating vulnerability scanners from Tenable, Qualys, and Rapid7. This move is a significant step towards strengthening cyber

Cyber Daily 4/1: Bitdefender Debrief, OpenSSH Vulnerability, Ivanti Zero-Day Alert, BDSM App Breach, Google Chrome Update, NSA iPhone Warning, Next.js Flaw, Chrome 0-Day, Ivanti Bug, Kubernetes Vulnerability

Cyber Daily 4/1: Bitdefender Debrief, OpenSSH Vulnerability, Ivanti Zero-Day Alert, BDSM App Breach, Google Chrome Update, NSA iPhone Warning, Next.js Flaw, Chrome 0-Day, Ivanti Bug, Kubernetes Vulnerability

Good morning, ONSEC Cyber Daily readers! In today's issue, we're diving into a sea of vulnerabilities and warnings that have been making waves in the cyber world. We begin with Bitdefender's March 2025 Threat Debrief, which highlights the relentless pursuit of cybercriminals in finding