Sign in Subscribe
ONSEC.io Research Team

ONSEC.io Research Team

Cyber Daily 12/4: Cisco's Decade-Old WebVPN Vulnerability Fuels Botnet, LastPass Dodges Deepfake CEO Scam, Google Chrome's Emergency Update, PRC Cyber Threats Tackled by CISA & FBI, EU's Cybersecurity Shield, Palo Alto Firewalls Breached

Cyber Daily 12/4: Cisco's Decade-Old WebVPN Vulnerability Fuels Botnet, LastPass Dodges Deepfake CEO Scam, Google Chrome's Emergency Update, PRC Cyber Threats Tackled by CISA & FBI, EU's Cybersecurity Shield, Palo Alto Firewalls Breached

Welcome to today's issue of ONSEC Cyber Daily, where we bring you the most impactful cybersecurity news in one place. Today, we're focusing on the urgent call from Cisco to patch a decade-old WebVPN vulnerability that's fueling the Androxgh0st botnet activity. This comes as
ONSEC.io Research Team
Cyber Daily 12/3: Log4Shell Exploits in VMware, Cisco's Decade-Old ASA WebVPN Vulnerability, Australia's CISC Guidance, Samsung's Security Patch, Windows Driver Vulnerability

Cyber Daily 12/3: Log4Shell Exploits in VMware, Cisco's Decade-Old ASA WebVPN Vulnerability, Australia's CISC Guidance, Samsung's Security Patch, Windows Driver Vulnerability

Welcome to the ONSEC Cyber Daily newsletter for December 3rd, 2024. Today, we delve into the most exploited vulnerabilities of 2023 and how they are shaping the cybersecurity landscape for 2025. We'll discuss how nation-state actors and cybercriminals have leveraged Log4Shell in various campaigns, including its notable use
ONSEC.io Research Team
Cyber Daily 11/30: Russian 0-Click Backdoor Attack on Windows, Bank of England's Cyber Threat Warning, Chinese Cyberespionage Impact on Gov Agencies, Microsoft and Oracle's Critical Patches

Cyber Daily 11/30: Russian 0-Click Backdoor Attack on Windows, Bank of England's Cyber Threat Warning, Chinese Cyberespionage Impact on Gov Agencies, Microsoft and Oracle's Critical Patches

Welcome to ONSEC Cyber Daily Newsletter! Stay ahead of the curve with today’s critical updates in cybersecurity. From alarming 0-click backdoor attacks targeting Windows systems to high-risk vulnerabilities in industry-critical software, the landscape of threats continues to evolve. This edition highlights the latest exploits and patches, emphasizing the urgency
ONSEC.io Research Team
Cyber Daily 11/29: Russian 0-Click Attack on Windows, Zyxel Firewalls Targeted by Helldown, India's Firefox Warning, Raspberry Pi Security, Advantech Wi-Fi Flaws, AI Cyber Warfare

Cyber Daily 11/29: Russian 0-Click Attack on Windows, Zyxel Firewalls Targeted by Helldown, India's Firefox Warning, Raspberry Pi Security, Advantech Wi-Fi Flaws, AI Cyber Warfare

Welcome to another edition of ONSEC Cyber Daily. Today, we're diving into a series of critical cybersecurity updates that have been making headlines. First up, we're looking at a confirmed Russian cyber attack that exploited a severe vulnerability in Windows, leading to a 0-click backdoor attack.
ONSEC.io Research Team
Cyber Daily 11/28: Oracle Agile PLM Flaw, Africa's Cybercrime Crackdown, Google Chrome Security Risks, ProjectSend Exploitation, Australia's Cyber Security Act, Windows 11 Vulnerability, Firefox Zero-Day Flaws

Cyber Daily 11/28: Oracle Agile PLM Flaw, Africa's Cybercrime Crackdown, Google Chrome Security Risks, ProjectSend Exploitation, Australia's Cyber Security Act, Windows 11 Vulnerability, Firefox Zero-Day Flaws

Happy Thanksgiving! 🦃🍁 We hope you’re enjoying this season of gratitude and celebration. Welcome to the latest issue of ONSEC Cyber Daily, your one-stop source for the most impactful cybersecurity news. Today, we're diving into a series of critical vulnerabilities and the urgent actions needed to mitigate them.
ONSEC.io Research Team
Cyber Daily 11/27: PTA Warns of WordPress Plugin Flaw, England's Weather Vulnerability Mapped, Android and iPhone Users Alerted, Grafana and ProjectSend Exploits, Microsoft and QNAP Patch Critical Gaps

Cyber Daily 11/27: PTA Warns of WordPress Plugin Flaw, England's Weather Vulnerability Mapped, Android and iPhone Users Alerted, Grafana and ProjectSend Exploits, Microsoft and QNAP Patch Critical Gaps

Welcome to your daily dose of ONSEC Cyber Daily. Today, we're diving into a plethora of critical security alerts and vulnerabilities that are making waves in the cyber world. First up, we have a critical security alert issued by PTA against a significant flaw in a WordPress plugin.
ONSEC.io Research Team
Cyber Daily 11/26: Palo Alto and Android Vulnerabilities, CISA's New Exploited Catalog, Apple Users Warned, Zyxel Firewall and 7-Zip Breaches, Android & Google Pixel Flaws, Array Networks and QNAP Patches

Cyber Daily 11/26: Palo Alto and Android Vulnerabilities, CISA's New Exploited Catalog, Apple Users Warned, Zyxel Firewall and 7-Zip Breaches, Android & Google Pixel Flaws, Array Networks and QNAP Patches

Welcome to your ONSEC Cyber Daily dose for November 26th. Today, we're diving into a sea of vulnerabilities and warnings that are making waves in the cybersecurity world. First up, Palo Alto's certification validation flaw is causing a stir, allowing attackers to escalate privileges. Meanwhile, Android
ONSEC.io Research Team