ONSEC: Boutique Penetration Testing Agency

Sign in Subscribe

ONSEC.io Research Team

ONSEC.io Research Team

Cyber Daily 3/11: Security Cameras Hijacked into Botnet, Widespread PHP Vulnerability Attacks, Bluetooth Chip Identity Theft, Federal Contractor Vulnerability Disclosure Program

Cyber Daily 3/11: Security Cameras Hijacked into Botnet, Widespread PHP Vulnerability Attacks, Bluetooth Chip Identity Theft, Federal Contractor Vulnerability Disclosure Program

Good morning ONSEC Cyber Daily readers! Today's issue is packed with critical updates and insights from the cybersecurity world. We kick off with a warning about a top security camera maker's devices being hijacked into a botnet, a result of cybercriminals exploiting a command injection vulnerability.

Cyber Daily 3/7: IVF, Genea Under Attack, Microsoft Battles Storm-2139, VMware Zero-Days Exploited, Telegram Vulnerability, Hitachi Energy Security Issues

Cyber Daily 3/7: IVF, Genea Under Attack, Microsoft Battles Storm-2139, VMware Zero-Days Exploited, Telegram Vulnerability, Hitachi Energy Security Issues

Welcome to the ONSEC Cyber Daily, your one-stop source for the latest in cybersecurity news. Today, we're diving into a series of critical cyber threats and vulnerabilities that are making headlines across the globe. First up, we're looking at the recent IVF cyber attack in Australia,

Cyber Daily 3/6: Google and CISA Alert on Android and VMware Exploits, Vim Vulnerability Allows Code Execution, AI Soft Unveils Alli AI

Cyber Daily 3/6: Google and CISA Alert on Android and VMware Exploits, Vim Vulnerability Allows Code Execution, AI Soft Unveils Alli AI

Welcome to the ONSEC Cyber Daily newsletter for March 6th. Today, we're diving into a series of vulnerabilities that have been making waves in the cybersecurity world. First up, we have a newly discovered Vim vulnerability (CVE-2025-27423) that allows code execution via malicious TAR archives. This is a

Cyber Daily 3/5: Google and VMware Race to Patch Critical Vulnerabilities, CISA Adds New Exploits to Catalog, Chinese Cyber Espionage on the Rise

Cyber Daily 3/5: Google and VMware Race to Patch Critical Vulnerabilities, CISA Adds New Exploits to Catalog, Chinese Cyber Espionage on the Rise

Welcome to today's issue of ONSEC Cyber Daily. We're diving into a whirlwind of warnings, vulnerabilities, and urgent patches that are making waves in the cybersecurity landscape. Google has set a 20-day deadline for Android users to update their phones due to an unspecified vulnerability, CVE-2024-43093,

Cyber Daily 3/4: CISA Warns of Cisco, Progress WhatsUp Gold Vulnerabilities, Ransomware Gangs Monitor CISA Catalog, Google and Samsung Patch Android Flaws

Cyber Daily 3/4: CISA Warns of Cisco, Progress WhatsUp Gold Vulnerabilities, Ransomware Gangs Monitor CISA Catalog, Google and Samsung Patch Android Flaws

Welcome to your daily dose of ONSEC Cyber Daily. Today, we're diving into a whirlwind of cybersecurity threats and vulnerabilities that are keeping the digital world on its toes. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued urgent warnings about a Progress WhatsUp Gold Path

Cyber Daily 2/28: Chinese Espionage Facilitates RA World Ransomware, AI in Cybersecurity, Maritime Industry's Cyber Vulnerabilities, Microsoft Copilot Warning, iPhone Data at Risk, GitLab and LibreOffice Patches

Cyber Daily 2/28: Chinese Espionage Facilitates RA World Ransomware, AI in Cybersecurity, Maritime Industry's Cyber Vulnerabilities, Microsoft Copilot Warning, iPhone Data at Risk, GitLab and LibreOffice Patches

Welcome to your daily dose of ONSEC Cyber Daily. Today, we're diving into the murky depths of cyberespionage, as malicious actors leverage a tool linked to a Chinese operation to facilitate a ransomware intrusion against an Asian software firm. We'll explore how AI can be responsibly

Cyber Daily 2/27: Telegram's Law Enforcement Cooperation, Ivanti's Vulnerability, Microsoft and Synacor's Zero-Days, WordPress Plugin Threat

Cyber Daily 2/27: Telegram's Law Enforcement Cooperation, Ivanti's Vulnerability, Microsoft and Synacor's Zero-Days, WordPress Plugin Threat

Welcome to today's issue of ONSEC Cyber Daily, where we bring you the latest and most impactful cybersecurity news. Today, we delve into the changing cybercrime landscape as Telegram starts cooperating with law enforcement, pushing malicious actors to seek other platforms. We also examine the increasing efficiency of