ONSEC: Boutique Penetration Testing Agency

Sign in Subscribe

ONSEC.io Research Team

ONSEC.io Research Team

Cyber Daily 1/13: CISA's 4-Year Review, Sex Toy Cyber Threat, Samsung's S24, S23 Attacks, Malicious Browser Extensions, macOS and Ivanti Vulnerabilities, Google's Android Alert

Cyber Daily 1/13: CISA's 4-Year Review, Sex Toy Cyber Threat, Samsung's S24, S23 Attacks, Malicious Browser Extensions, macOS and Ivanti Vulnerabilities, Google's Android Alert

Welcome to your daily dose of ONSEC Cyber Daily, where we bring you the latest and most impactful cybersecurity news. Today, we delve into a comprehensive review of the Cybersecurity and Infrastructure Security Agency's (CISA) four-year policy, shedding light on the state of cybersecurity in the US. In

Cyber Daily 1/10: Ivanti VPN Vulnerability Exploited, ACSC Issues Alert, Quorum Cyber Acquires Kivu, Critical Mitel and Oracle Flaws, Ivanti and SonicWall Patches Urged

Cyber Daily 1/10: Ivanti VPN Vulnerability Exploited, ACSC Issues Alert, Quorum Cyber Acquires Kivu, Critical Mitel and Oracle Flaws, Ivanti and SonicWall Patches Urged

Welcome to the latest issue of ONSEC Cyber Daily, your one-stop source for all the major cybersecurity updates. Today, we delve into the alarming details of Ivanti VPN's major vulnerability, as revealed by Mandiant. This critical zero-day vulnerability has been exploited since December 2024, prompting an urgent alert

Cyber Daily 1/9: Ivanti and CISA Warn of Active Exploits, Mitel and Oracle Under Attack, Patching Urged for CVE-2025-0282, Cybersecurity Podcasts Trending

Cyber Daily 1/9: Ivanti and CISA Warn of Active Exploits, Mitel and Oracle Under Attack, Patching Urged for CVE-2025-0282, Cybersecurity Podcasts Trending

Welcome to the latest issue of ONSEC Cyber Daily. Today, we're diving into a flurry of active cyber threats and vulnerabilities that have been making headlines. Ivanti, a leading IT company, has issued a warning about active exploitation of a bug in its Connect Secure appliances. The U.

Cyber Daily 1/8: Cymulate Acquires CYNC, Critical Android Update, Windows LDAP Vulnerability, 40k+ CVEs in 2024, MediaTek's RCE Flaw, Samsung's Critical Updates

Cyber Daily 1/8: Cymulate Acquires CYNC, Critical Android Update, Windows LDAP Vulnerability, 40k+ CVEs in 2024, MediaTek's RCE Flaw, Samsung's Critical Updates

Welcome to the latest issue of ONSEC Cyber Daily! Today, we're diving into the recent acquisition of CYNC Secure by Cymulate, a move that promises to enhance threat exposure validation. We'll also be discussing the appointment of Hevlin, the former CISO at CyberArk, who is now

Cyber Daily 1/7: Microsoft, Samsung Patch Critical CVEs, New Steganography Malware Hits Firms, OpenSSH Vulnerability Exploited, 3M WordPress Sites at Risk

Cyber Daily 1/7: Microsoft, Samsung Patch Critical CVEs, New Steganography Malware Hits Firms, OpenSSH Vulnerability Exploited, 3M WordPress Sites at Risk

Welcome to today's issue of ONSEC Cyber Daily! We're diving into the world of cybersecurity, where vulnerabilities and patches are the talk of the town. As the minister warns, we need to work diligently to ensure the security of our people and critical infrastructure, highlighting the

Cyber Daily 1/6: Chinese APT Breaches U.S. Treasury, Assam Police Crack Cybercrime Racket, Windows and Nuclei Patch High-Risk Vulnerabilities, PoC Exploits Released for OpenSSH and Windows Registry, Wordpress Plugin Risk, Cybersecurity Podcast Insights

Cyber Daily 1/6: Chinese APT Breaches U.S. Treasury, Assam Police Crack Cybercrime Racket, Windows and Nuclei Patch High-Risk Vulnerabilities, PoC Exploits Released for OpenSSH and Windows Registry, Wordpress Plugin Risk, Cybersecurity Podcast Insights

Welcome to the latest issue of ONSEC Cyber Daily. Today, we delve into the world of cyber vulnerabilities and the critical need for robust security measures. We kick off with a warning from a minister about the potential risks that cyber vulnerabilities pose to our people and critical infrastructure. In

Cyber Daily 1/4: BeyondTrust Exposure, Unencrypted Email Vulnerability, LDAPNightmare Exploit, Sophos Firewall Flaws

Cyber Daily 1/4: BeyondTrust Exposure, Unencrypted Email Vulnerability, LDAPNightmare Exploit, Sophos Firewall Flaws

Welcome to your daily dose of ONSEC Cyber Daily. Today, we're diving into the deep end of cybersecurity vulnerabilities and exploits. Researchers at Censys have raised the alarm on over 8,600 exposed BeyondTrust instances, while unencrypted email servers remain a soft target for cyber sniffers. In Scotland,