Welcome to the latest issue of ONSEC Cyber Daily! Today, we're diving into the recent acquisition of CYNC Secure by Cymulate, a move that promises to enhance threat exposure validation. We'll also be discussing the appointment of Hevlin, the former CISO at CyberArk, who is now tasked with fortifying Cynomi's information security strategy. In other news, Google has issued a critical security warning urging users to update their Android devices from version 12 to 15. This comes in the wake of a severe security vulnerability discovered by veteran cybersecurity writer, Davey Winder. We'll also be examining the recent Windows LDAP Denial of Service vulnerability, and the significant increase in CVEs published in 2024, highlighting the escalating threat of cyberattacks. In the telecom sector, the breach list continues to grow, with the impact of the 'wallet drainer' being felt across the U.S. We'll be discussing this and more, including how hackers can hijack your device without your knowledge, and the critical updates announced by Samsung for millions of phones worldwide. Lastly, we'll be featuring some of the latest cybersecurity podcasts, offering insights into express lane enforcement, the cryptic messages of podcaster Shawn Ryan, and the expert guide to threat modeling by Tony UcedaVelez. Stay tuned for these stories and more in today's ONSEC Cyber Daily. Stay safe and informed!

Exploits Alert

1. MSSP Market News: Cymulate Acquires CYNC Secure for Threat Exposure Validation: Cymulate, a leading cybersecurity firm, has acquired CYNC Secure to enhance its threat exposure validation capabilities. The move is expected to bolster Cymulate's information security strategy, particularly in safeguarding client data. Source: MSSP Alert
2. Critical Google Security Warning—Update Android 12 To 15 Now: A critical security vulnerability has been identified in Android versions 12 to 15, prompting Google to issue an urgent update warning. The severity of the issue underscores the importance of keeping devices updated to protect against potential cyber threats. Source: Forbes
3. Windows LDAP Denial of Service Vulnerability (CVE-2024-49113) Alert: A new alert has been issued for a Denial of Service vulnerability in Windows Lightweight Directory Access Protocol (LDAP), known as CVE-2024-49113. The vulnerability could potentially cause domain controllers to crash and reboot, posing a significant threat to network security. Source: Security Boulevard
4. 40,000+ CVEs Published In 2024, Marking A 38% Increase From 2023: The number of Common Vulnerabilities and Exposures (CVEs) published in 2024 exceeded 40,000, marking a 38% increase from the previous year. This surge underscores the growing threat landscape, with ransomware emerging as the most frequently reported type of cyberattack globally. Source: Cybersecurity News
5. Wallet drainer impact, U.S. telecom breach list grows: The list of U.S. telecom companies falling victim to cyberattacks continues to grow, with the latest breach involving a wallet drainer. The incident highlights the increasing sophistication of cyberattacks and the need for robust cybersecurity measures. Source: CISO Series

Vulnerabilities & Patches

1. MediaTek's RCE Flaw: MediaTek's chipset firmware has a critical vulnerability (CVE-2024-20154) that could allow hackers to hijack devices. The broad attack surface and ease of exploitation highlight the importance of securing firmware and deploying patches promptly. Source: Security Newspaper
2. Samsung's Critical Updates: Samsung has announced critical updates for millions of phones worldwide, including a patch for CVE-2024-20125. The updates are crucial to protect devices from potential vulnerabilities. Source: iDevice.ro
3. Google Pixel's Themed Icons Fix: Google has released the first Pixel update of 2025, which includes a security patch for CVE-2024-49747. The update fixes an issue with themed icons. Source: Android Police
4. Redis Server Vulnerabilities: Critical vulnerabilities have been found in Redis servers, including CVE-2024-51741, affecting versions 7.0.0 and newer. These flaws could allow remote code execution and DoS attacks. Source: TechNadu
5. Moxa's OT Devices Flaws: Two significant vulnerabilities have been found in Moxa's OT devices, including a critical RCE flaw (CVE-2024-9138). These vulnerabilities could allow attackers to escalate their privileges to root. Source: SC Media

Podcasts

1. Cybersecurity and Express Lane Enforcement: This podcast discusses the latest trends in cybersecurity and the importance of express lane enforcement in mitigating cyber threats. Source: Land Line Magazine
2. Podcaster Shawn Ryan's New Release: Shawn Ryan, a renowned podcast host, teases a new release that promises to delve into intriguing and relevant topics. Source: Newsweek
3. Taking the Pulse, A Health Care and Life Sciences Video Podcast: This episode features Terry McDonnell, SVP and Chief Nursing Executive for Duke University Health System, discussing the intersection of healthcare and cybersecurity. Source: JD Supra
4. The Presumption of Innocence Podcast: This podcast episode explores the concept of justice in the context of cybercrime, focusing on the story of a man who was wrongly accused. Source: JD Supra
5. HHS CIO Eyes Special Cyber Measures to Secure Data: In this podcast, the CIO of HHS discusses special cyber measures to secure data, highlighting the importance of robust cybersecurity in the healthcare sector. Source: GovCIO Media & Research

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily! We've covered a lot of ground, from Cymulate's acquisition of CYNC Secure to the critical security updates for Android and Samsung phones. We've also touched on the increasing number of CVEs published and the importance of securing chipset firmware. Remember, in the world of cybersecurity, knowledge is power. Stay informed, stay updated, and most importantly, stay secure. If you found today's newsletter helpful, why not share it with your friends and colleagues? They might find it useful too. Until next time, keep your data safe and your systems secure. Signing off, your trusted source for all things cybersecurity, ONSEC Cyber Daily.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn