Welcome to your ONSEC Cyber Daily newsletter for January 22, 2025. Today, we're diving into a whirlwind of cybersecurity threats and solutions that have been making headlines. First up, Mercedes-Benz owners are on high alert as 13 security issues have been discovered, putting their vehicles at risk of hacking. Meanwhile, PayPal users are urged to stay vigilant as cyberattacks continue to plague the platform. In the DeFi space, Squarespace domains are vulnerable to DNS Hijacking, and PARSIQ's Reactive Network is stepping up to provide solutions for DeFi Exchange vulnerabilities. On the software front, NCERT has issued a cybersecurity alert to address software vulnerabilities, emphasizing the importance of data protection in education. In addition, 7-Zip and Apache HTTP Server have released security updates to address vulnerabilities in their software. The patching landscape is also buzzing with activity. CISA's Vulnrichment Program is simplifying the process of deciding what to patch first. However, patch procrastination has left 50,000 Fortinet firewalls still vulnerable to the latest zero-day. Microsoft has finally delivered a fix for Windows 11's UEFI Secure Boot CVE after a long 7-month delay. On the other hand, Mozilla has released a patch for high-impact vulnerabilities in Firefox and Thunderbird. In the automotive industry, Mercedes-Benz has patched vulnerabilities in its MBUX Infotainment System. Finally, we're tuning into the latest cybersecurity podcasts. Futurist Srini Vasan shares insights on cybersecurity advancements and vulnerabilities on the BrainChip podcast. Meanwhile, the CyberWire podcast explores the future of CISA and the impact of AI on our jobs. Stay tuned for more updates and remember, cybersecurity is everyone's responsibility. Stay safe, stay informed.

Exploits Alert

1. Nvidia's GPU Driver Update: Nvidia has released an update for its GPU driver, addressing five vulnerabilities, including a buffer overflow issue (CVE-2024-0150). Users are advised to update their drivers to the latest version to mitigate these vulnerabilities. Source: Nvidia
2. Belsen Group Leaks FortiGate Firewall Configurations: The Belsen Group has leaked over 15,000 FortiGate Firewall configurations. Users are urged to patch the vulnerability (CVE-2022-40684) as soon as possible to prevent potential exploits. Source: Fortinet
3. New Vulnerabilities in Vietnam: 23 new vulnerabilities have been identified in information systems in Vietnam, including two in SharePoint Server (CVE-2025-21344, CVE-2025-21348). Users are advised to update their systems according to the provided instructions. Source: Microsoft
4. Windows 11 Flaw: A vulnerability in Windows 11 (CVE-2024-7344) allows malicious actors to install harmful code on devices, bypassing many built-in security measures. Users are recommended to update their systems immediately, as hackers have had seven months to exploit this flaw. Source: Microsoft
5. W3 Total Cache Plugin Flaw: A flaw in the WordPress W3 Total Cache plugin could expose hundreds of thousands of WordPress sites to attacks. Attackers could potentially access information from internal services, including metadata on cloud-based apps. Users are advised to update the plugin to the latest version. Source: WordPress

Vulnerabilities & Patches

1. Nvidia's GPU Driver Update: Nvidia has addressed five vulnerabilities in its mid-January GPU driver update, including a buffer overflow issue (CVE-2024-0150). It is recommended to install the update to mitigate these vulnerabilities. Source: Nvidia
2. Belsen Group Leaks FortiGate Firewall Configurations: The Belsen Group has leaked over 15,000 FortiGate Firewall configurations. It is crucial to patch CVE-2022-40684 as soon as possible to prevent potential breaches. Source: Fortinet
3. New Vulnerabilities in Vietnam: 23 new vulnerabilities have been identified in information systems in Vietnam, including CVE-2025-21344 and CVE-2025-21348 in SharePoint Server. Users are advised to update their patches according to the instructions provided. Source: Microsoft
4. Windows 11 Flaw: A vulnerability in Windows 11 (CVE-2024-7344) allows malicious actors to install harmful code on devices, bypassing many built-in security measures. Users are advised to update their systems immediately as hackers have had 7 months to exploit this flaw. Source: Microsoft
5. W3 Total Cache Plugin Flaw: A flaw in the WordPress W3 Total Cache plugin could expose hundreds of thousands of WordPress sites to attacks. Attackers could potentially access information from internal services, including metadata on cloud-based apps. Users are advised to update the plugin to the latest version. Source: WordPress

Podcasts

1. BrainChip Podcast Features Cybersecurity Expert Srini Vasan: In this podcast, Srini Vasan, a futurist and cybersecurity expert, discusses the advancements and vulnerabilities in cybersecurity. He provides valuable insights for the industry, focusing on large-scale data analytics, data harvesting, and open data projects. Source: SDxCentral
2. Digital Mindhunters: A Novel Look at Cybersecurity and Artificial Intelligence: This special edition podcast features a conversation with author, CEO, and cybersecurity advisor Dr. Bilyana Lilly. The discussion provides a unique perspective on cybersecurity and artificial intelligence. Source: CyberWire
3. The Presumption of Innocence Podcast: Episode 53 - Diagnosis: This episode tells the story of Dr. Muhamad Aly Rifai, a physician who lived in fear and anxiety for six and a half years. The podcast explores the psychological impact of living under constant threat. Source: JD Supra
4. The AI Fix #34: Fake Brad Pitt and Why AI Means We Will Lose Our Jobs: In this episode, the hosts discuss the implications of AI on job security. They also explore the bizarre world of AI, including a vacuum cleaner sprouting a robotic arm and legs. Source: Graham Cluley
5. 4th Party Data Breach? We Can Barely Catch the 1st Party Ones! - CISO Series: This podcast discusses the challenges of data breaches in the interconnected world of organizations. The discussion emphasizes that the problem doesn't stop with direct vendors but extends to the entire network. Source: CISO Series

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. From the vulnerabilities found in Mercedes-Benz's infotainment system to the ongoing cyberattacks on PayPal, it's clear that cybersecurity is a pressing issue that affects us all. We hope that our daily updates help you stay informed and prepared. Remember, knowledge is power, and in the world of cybersecurity, it can also mean protection. If you found today's newsletter helpful, why not share it with your friends and colleagues? You never know, the information you share today could help someone avoid a cyberattack tomorrow. Stay safe, stay informed, and keep sharing the knowledge. See you in the next edition of ONSEC Cyber Daily.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn