Welcome to the January 15th edition of ONSEC Cyber Daily, where today's headlines weave a cautionary tale of ignored warnings and urgent alerts. In a world where cyber threats loom large, Manage My Health's oversight of lax security measures raises alarms, echoing the broader narrative of vulnerability in the health sector despite the guidance of the Health Information Security Framework. Meanwhile, Apple issues a critical warning to iPhone users amidst a wave of cyberattacks, underscoring the relentless nature of digital threats. As federal agencies scramble to address vulnerabilities in Gogs, and Pakistan grapples with a surge in WhatsApp hijackings, the global landscape of cybersecurity is fraught with challenges. From outdated police IT infrastructures in the Netherlands to Microsoft's extensive Patch Tuesday addressing 114 vulnerabilities, the urgency to fortify defenses is palpable. Join us as we delve into these pressing issues and explore the interconnected web of cybersecurity in today's digital age.

Exploits Alert

1. Manage My Health Ignored Warning About Lax Security System: A cybersecurity expert has criticized Manage My Health for disregarding warnings about their inadequate security measures. The Health Information Security Framework (HISF) was designed to guide the health sector in securely managing information, but it appears these guidelines were not followed. This oversight could lead to significant vulnerabilities in the healthcare sector. Source: RNZ.
2. Apple Issues Major Security Warning to iPhone Users: Apple has alerted its users to a serious security threat following cyberattacks targeting iPhones. The company has responded by releasing two new iOS updates to address these vulnerabilities. iPhone users are strongly advised to update their devices immediately to protect against potential breaches. Source: UNILAD.
3. Fix or Ditch: CISA Orders Federal Agencies to Stop Using Gogs: The Cybersecurity and Infrastructure Security Agency (CISA) has mandated federal agencies to cease using Gogs due to a critical vulnerability. This flaw is a common attack vector for cybercriminals, posing significant risks to federal systems. Agencies are urged to either fix the vulnerability or discontinue use of the software. Source: Cybernews.
4. Pakistan Issues Nationwide Alert Over Surge in WhatsApp Account Hijackings: Pakistan's National Cyber Emergency Response Team has issued a nationwide advisory following a spike in WhatsApp account hijackings. Users are warned to remain vigilant and take necessary precautions to secure their accounts. This surge highlights the increasing threat of cyberattacks on communication platforms. Source: The Express Tribune.
5. Dutch Police Warn of Outdated and Vulnerable IT Infrastructure: The Dutch police have raised concerns about their outdated IT infrastructure, which is increasingly vulnerable to cyberattacks. This issue underscores the challenges faced by law enforcement in combating international cybercrime. Upgrading the infrastructure is crucial to maintaining security and effectiveness in their operations. Source: Cybernews.

Vulnerabilities & Patches

1. Firefox 147 Tightens Web Security, Reduces Data Sharing with Google: Firefox 147 has introduced significant security enhancements, focusing on tightening web security and reducing data sharing with Google. This update addresses multiple graphics component vulnerabilities, identified as CVE-2026-0878 to CVE-2026-0880, which could potentially allow unauthorized access. Users are encouraged to update to the latest version to mitigate these risks. Source: CyberInsider.
2. FortiOS and FortiSwitchManager Flaw Allows Remote Code Execution: A critical vulnerability in FortiOS and FortiSwitchManager, tracked as CVE-2025-25249, has been identified, allowing remote code execution. Organizations are advised to apply patches promptly or implement temporary mitigations to protect against potential exploitation. This flaw poses a significant risk due to its high CVSS score. Source: GBHackers.
3. Microsoft SQL Server Flaw Enables Network-Based Privilege Escalation: A newly discovered vulnerability in Microsoft SQL Server, CVE-2026-20803, allows attackers to escalate privileges over the network. This flaw requires immediate attention as incorrect patching could disrupt production systems. Administrators should ensure the correct updates are applied to maintain system integrity. Source: Cyber Press.
4. ServiceNow Patches Critical Security Flaw Allowing User Impersonation: ServiceNow has patched a critical flaw in its AI Platform, identified as CVE-2025-12420, which allowed user impersonation. Known as "BodySnatcher," this vulnerability scored 9.3/10 and affected multiple applications, highlighting the importance of timely updates to prevent unauthorized access. Source: MSN.
5. Node.js Updated Versions Patch High-Risk Security Vulnerabilities: Recent updates to Node.js have addressed high-risk security vulnerabilities, including CVE-2025-55131 with a CVSS score of 8.1. These updates prevent the bypassing of restrictions on file system operations, emphasizing the need for developers to update their environments to safeguard against potential exploits. Source: heise online.

Podcasts

1. Podcast: How AI experts are working with scientists to drive positive health outcomes. In this podcast episode, UT San Antonio's John Elizondo explores the intersection of AI and health sciences, discussing how AI experts collaborate with scientists to enhance health outcomes. The conversation delves into innovative AI applications in healthcare, highlighting the potential for AI to revolutionize patient care and medical research. The episode provides insights into the challenges and opportunities of integrating AI into health systems.
2. Podcast: Ransomware whack-a-mole, AI agents as insider threats and how to hack a humanoid robot. This podcast episode from IBM's Security Intelligence series tackles the evolving landscape of cybersecurity threats, focusing on ransomware, AI as potential insider threats, and the vulnerabilities of humanoid robots. Experts discuss strategies to mitigate these risks and the implications of AI in cybersecurity. The episode provides a comprehensive overview of current threats and the innovative solutions being developed to counteract them.
3. Podcast: GoBruteforcer targets blockchain projects, Android bug causes volume key issues, Verizon...In this episode from the CISO Series, the focus is on the GoBruteforcer malware targeting blockchain projects and a critical Android bug affecting volume keys. The discussion includes insights into how these vulnerabilities can be exploited and the measures organizations can take to protect themselves. The episode also covers Verizon's recent security updates, providing listeners with a well-rounded view of current cybersecurity challenges.
4. Podcast: AI in Manufacturing: The Growing Risk and Reward Dilemma Escalating Data Security. This Techstrong TV podcast episode examines the dual nature of AI in manufacturing, highlighting both the risks and rewards. The conversation addresses the increasing data security concerns as AI becomes more integrated into manufacturing processes. Experts discuss strategies to balance innovation with security, offering insights into how companies can navigate this complex landscape.

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, it's clear that the digital landscape is as dynamic as ever. From Manage My Health's oversight of security warnings to Apple's urgent alert for iPhone users, the importance of staying informed and vigilant cannot be overstated. The Health Information Security Framework (HISF) serves as a crucial guide for safeguarding sensitive data, yet the challenges persist across sectors and borders. Whether it's the CISA's directive to federal agencies or Pakistan's nationwide alert on WhatsApp hijackings, the message is consistent: proactive measures are essential. As we navigate these turbulent cyber waters, remember that knowledge is your best defense. We hope you found today's insights valuable. If you did, please share ONSEC Cyber Daily with your friends and colleagues. Together, we can build a more secure digital future. Until next time, stay safe and stay informed!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn