Hello ONSEC Cyber Daily readers! Today’s edition covers critical cybersecurity updates. CERT-In has issued a high-risk warning for Android devices and Google Chrome, highlighting vulnerabilities that could be exploited through malicious apps or websites. The National Cyber Security Centre also reports a rise in denial-of-service (DoS) attacks disrupting organizations.

We’ll cover the actively exploited Veeam vulnerability, with insights from Adam Pilton at CyberSmart. Plus, in the wake of the muah.ai data breach, we stress the importance of cyber-awareness to prevent personal extortion. In patching news, critical updates are available for Samsung Galaxy A35, GitLab, Ivanti CSA, and Fortinet FortiGate. Stay informed with ONSEC Cyber Daily.

Exploits Alert

1. CERT-In Issues 'High-Risk' Security Warning For Android Devices And Google Chrome: The Indian Computer Emergency Response Team (CERT-In) has issued a high-risk warning for Android and Google Chrome users. Cyber attackers could potentially exploit these vulnerabilities to execute arbitrary code and gain unauthorized system access. Source: ETV Bharat
2. Veeam Vulnerability Actively Exploited By Ransomware Gangs: Cybersecurity Consultant Adam Pilton warns that cyber criminals are actively exploiting vulnerabilities in Veeam software to deploy ransomware. Users are advised to patch their systems promptly to mitigate the risk. Source: Information Security Buzz
3. The muah.ai Data Breach – Extortion Threats and Cyber Vulnerabilities: Following the muah.ai data breach, experts stress the importance of cyber awareness among employees to mitigate the risk of personal extortion and compromise. Source: Linklaters
4. NSA and Allies Warn of Ongoing Threats from Russian SVR Cyber Hackers: The National Cyber Security Centre (NCSC) and the National Security Agency (NSA) have issued a joint cybersecurity advisory warning about ongoing threats from Russian SVR cyber hackers. The advisory provides mitigation strategies to help organizations protect their systems. Source: Industrial Cyber

Vulnerabilities & Patches

1. Samsung Galaxy A35 October Update: Enhanced Security and Stability Features: Samsung has released a critical security patch for the Galaxy A35, addressing a vulnerability that could potentially compromise the device. The update also includes enhanced stability features. Source: Pune News
2. GitLab Critical Patches Released: 17.4.2, 17.3.5, 17.2.9: GitLab has released critical patches for all versions of its software, fixing a major vulnerability that allowed running pipelines on arbitrary branches. Users are urged to update their systems immediately. Source: The Cyber Express
3. Nation-State Actors Exploiting Ivanti CSA 0-days To Compromise Victims' Networks: Nation-state actors have been exploiting a command injection vulnerability in Ivanti CSA, affecting the resource reports.php. The attackers were observed patching some of the vulnerabilities. Source: Cybersecurity News
4. Nation-state attackers chained zero-days to target Ivanti Cloud Services Appliance: Ivanti Cloud Services Appliance users running CSA 4.6 patch 518 and prior have been targeted by nation-state attackers exploiting zero-day vulnerabilities. Source: Computing
5. Fortinet FortiGate CVE-2024-23113 - A Super Complex Vulnerability In A Super Secure Appliance: A complex vulnerability in Fortinet FortiGate, affecting all currently-maintained branches, has been patched. The vulnerability was previously exploited in the wild and highlighted by CISA. Source: Watchtowr Labs

Podcasts

1. Once the Panic Subsides You'll Appreciate This Phishing Test: This podcast episode discusses the importance of phishing tests and how they can help individuals and organizations improve their cybersecurity measures. The episode was recorded live in Houston, TX. Source: CISO Series
2. Next-Gen protection: AI's role in cybersecurity: This episode from EY India's 'Cybersecurity Awareness Month' podcast series discusses the role of Artificial Intelligence in cybersecurity and how it can help in next-generation protection. Source: EY India
3. Unlocking Proactive Compliance with Adobe's Common Controls Framework: In this episode, Devansh Sharma, Senior Security and Compliance Product Owner at Adobe, discusses Adobe's Common Controls Framework and how it can help in proactive compliance. Source: Security Boulevard
4. U.S. Lawmakers, White House Move to Stem China Cyberthreat: This podcast episode discusses the steps taken by U.S. lawmakers and the White House to counter the cyber threats posed by China. Source: Security Boulevard
5. APDR Podcast Episode 67 with host Kym Bergmann: This episode from the Asia Pacific Defence Reporter discusses various topics related to cybersecurity, IT, and government policies. Source: Asia Pacific Defence Reporter

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, we hope you found the information valuable in keeping your digital world secure. From the high-risk warnings issued by CERT-In for Android devices and Google Chrome, to the ongoing threats from Russian SVR cyber hackers, it's clear that the cyber landscape is ever-evolving and fraught with potential dangers. Remember, staying informed is the first line of defense. So, don't forget to patch up those vulnerabilities and stay alert to the risks of personal extortion and compromise. We also encourage you to tune into some of the insightful cybersecurity podcasts we've highlighted today. They offer a wealth of knowledge from industry experts that can help you navigate the complex world of cybersecurity. Before we sign off, we ask that you share this newsletter with your friends and colleagues. In the fight against cyber threats, knowledge is power. By sharing ONSEC Cyber Daily, you're helping to create a more informed and secure digital community. Stay safe, stay informed, and we'll see you in the next edition of ONSEC Cyber Daily.