Welcome to your daily dose of ONSEC Cyber Daily, where we bring you the latest and most impactful cybersecurity news. Today, we delve into a comprehensive review of the Cybersecurity and Infrastructure Security Agency's (CISA) four-year policy, shedding light on the state of cybersecurity in the US. In an unexpected twist, we also explore the potential cyber threats lurking in the most intimate corners of our lives, with a warning about the vulnerability of couples' sex toys to cyberattacks. The tech world is not without its share of vulnerabilities either. Samsung faces a security challenge with Google confirming attacks on Galaxy S24 and S23 models, urging users to update their devices. In other news, popular browser extensions have been found to harbor malicious code, prompting a cybersecurity alert from Cyberhaven. Apple users aren't safe either, with a critical macOS Sandbox vulnerability (CVE-2024-54498) exploit released online. Apple has swiftly released patches to address this issue. Meanwhile, Ivanti Connect Secure instances are exposed as the exploitation of CVE-2025-0282 unfolds, with administrators advised to update systems immediately. Finally, Google has issued an important warning about the security of millions of Android devices, emphasizing the critical importance of the January 2025 Android Security Bulletin. Stay tuned as we delve into these stories and more, keeping you updated on the ever-evolving world of cybersecurity.

Exploits Alert

1. Four Years of CISA: A Policy Review of US Cybersecurity and Infrastructure Security: The Cyber Express reviews the progress and impact of the Cybersecurity and Infrastructure Security Agency (CISA) over the past four years. The article highlights the agency's role in enhancing the country's cybersecurity posture and its response to major cyberattacks. Source: The Cyber Express
2. Urgent Cyber Attack Warning as Couples' Sex Toys 'Could Be Weaponised by Hackers': A new report warns that certain sex toys could be exploited by hackers due to their vulnerable pairing methods, potentially leading to man-in-the-middle attacks. The report emphasizes the need for stronger security measures in IoT devices. Source: Mirror UK
3. Samsung's Update Warning—Google Confirms Galaxy S24, S23 Attacks: Google has confirmed a vulnerability in Samsung's Galaxy S24 and S23 models that could be exploited by attackers. Users are urged to update their devices as soon as possible to mitigate the risk. Source: Forbes
4. Cybersecurity Alert: Malicious Code Found in Popular Browser Extensions: A security alert has been issued by AabyssTeam's founder on the X platform, revealing that Cyberhaven, a security company, has discovered malicious code in popular browser extensions. Users are advised to review and update their extensions to protect their data. Source: Binance

Vulnerabilities & Patches

1. Critical macOS Sandbox Vulnerability (CVE-2024-54498) PoC Exploit Released Online: Apple has promptly addressed CVE-2024-54498 by releasing patches for various macOS versions. The vulnerability was severe enough to warrant a proof-of-concept exploit being released online. Source: cybersecuritynews.com
2. 33,542 Ivanti Connect Secure Instances Exposed as Exploitation of CVE-2025-0282 Unfolds: Administrators are urged to update systems affected by CVE-2025-0282 immediately and perform factory resets where necessary to ensure malware removal. This vulnerability has led to the exposure of 33,542 Ivanti Connect Secure instances. Source: cybersecuritynews.com
3. Important Warning from Google! Millions of Android Devices Are Not Safe!: The January 2025 Android Security Bulletin is critical for users as it includes updates to ensure the security of millions of Android devices. Source: raillynews.com
4. Week in review: Exploited Ivanti Connect Secure zero-day, Patch Tuesday forecast: Ivanti has fixed two vulnerabilities affecting Ivanti Connect Secure, Policy Secure and ZTA gateways. One of these vulnerabilities, CVE-2025-0282, has been exploited, prompting a review of the week's events. Source: helpnetsecurity.com

Podcasts

1. CyberWire Daily: CyberWire Daily podcast brings you the day's most relevant news in the world of cybersecurity. The podcast features interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world. Source: CyberWire.
2. Darknet Diaries: Darknet Diaries is a podcast about hackers, breaches, shadow government activity, hacktivism, cybercrime, and all the things that dwell on the hidden parts of the network. This is a podcast about the dark side of the internet. Source: Darknet Diaries.
3. The Privacy, Security, & OSINT Show: This weekly podcast presents news and topics involving privacy, digital security, and open source intelligence (OSINT). It's an essential listen for anyone interested in protecting their privacy in the digital age. Source: IntelTechniques.
4. Smashing Security: Smashing Security is a weekly podcast that takes a lighter look at the world of cybersecurity. Hosts Graham Cluley and Carole Theriault chat with guests about cybercrime, hacking, and online privacy. Source: Smashing Security.
5. Security Now: Security Now is a weekly podcast hosted by Steve Gibson and Leo Laporte. It covers important and interesting issues in security and privacy, for a technically-inclined audience. Source: TWiT Network.

Final Words

And there you have it, folks! Another day, another set of cyber threats to keep an eye on. From the four-year policy review of US cybersecurity to the urgent warning about potential cyberattacks on couples' toys, it's clear that the digital landscape is ever-evolving and full of surprises. Samsung users, don't forget to update your devices to protect against potential attacks. And for all you browser extension enthusiasts, be wary of malicious code lurking in your favorite add-ons. Apple and Ivanti users, make sure you've patched up those vulnerabilities. And Android users, heed Google's warning and ensure your devices are secure. Remember, knowledge is power. The more we know about these threats, the better equipped we are to protect ourselves and our digital assets. So, why keep this valuable information to yourself? Share 'ONSEC Cyber Daily' with your friends and colleagues. Let's work together to create a safer cyber world. Stay safe, stay informed, and see you tomorrow for more cybersecurity updates.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn