Welcome to your daily dose of ONSEC Cyber Daily. Today, we're diving into a world where cloud servers are being exploited for secret cryptocurrency schemes, and open-source security solutions are rising as the heroes. We're also looking at the government's latest cybersecurity warnings about vulnerabilities in Microsoft Windows and Samsung devices. In other news, Windows 11 and Cisco are under the spotlight for their CLFS driver vulnerabilities and exploited ASA, respectively. We'll discuss what these vulnerabilities mean for you and how you can protect yourself. We're also covering the latest podcast episodes, including Joe Rogan's refutation of YouTube censorship rumors and a deep dive into cybersecurity insights with Contrast CISO David Lindner. Lastly, we'll share some tips on how to shore up your cyber resilience strategies this fall and take a closer look at the advances of security solutions at Verkada. Stay tuned for all this and more in today's ONSEC Cyber Daily. Stay safe, stay informed.

Exploits Alert

1. Cybersecurity Alert: Cloud Servers Targeted for Secret Cryptocurrency Schemes!: Cybercriminals are increasingly targeting cloud servers for illicit cryptocurrency mining operations. Open-source security solutions are being developed to combat this growing threat, empowering tech-savvy individuals to take a proactive role in cybersecurity. Source: bitperfect.pe
2. Government warns of bugs in multiple Microsoft Windows versions: Here's what you must do: The Indian government's cybersecurity arm has issued an advisory warning users of vulnerabilities in specific versions of Microsoft Windows. Users are urged to take immediate action to protect their systems. Source: msn.com
3. Windows 11 CLFS Driver Vulnerability Allow Attackers To Escalate Privileges: A vulnerability in the Windows 11 CLFS driver could allow attackers to escalate their privileges. No CVE number or patch details have been provided yet, highlighting the importance of staying informed about potential cyber threats. Source: cybersecuritynews.com
4. Critical Warning For Samsung Users; Indian Government Flags High-Risk Security Issue: The Indian government has flagged a high-risk security issue for Samsung users. As technology advances, so do the tactics of cybercriminals, making it crucial for users to prioritize staying updated on potential threats. Source: mashable.com

Vulnerabilities & Patches

1. Windows 11 CLFS Driver Vulnerability Allow Attackers To Escalate Privileges: A proof of concept exploit has been released for a vulnerability in Windows 11's CLFS driver that allows attackers to escalate privileges. No CVE number or patch details have been provided yet. Users are advised to stay updated on this issue. Source: Cybersecurity News.
2. Cisco Addresses Exploited ASA, FTD Vulnerability: Cisco has released updates to address vulnerabilities in its ASA and FTD products. The vulnerabilities, identified as CVE-2024-20424 and CVE-2024-20412, have been exploited in the past. Users are advised to apply the updates promptly. Source: ChannelE2E.
3. Actively exploited Cisco ASA, FTD vulnerability addressed: Cisco has issued updates to fix actively exploited vulnerabilities in its ASA and FTD products. The vulnerabilities, identified as CVE-2024-20424 and CVE-2024-20412, are now addressed. Users are advised to apply the patches as soon as possible. Source: SC Media.
4. Windows 11 CLFS Driver Vulnerability Let Attackers Escalate Privileges: A vulnerability in Windows 11's CLFS driver allows attackers to escalate privileges. No CVE number or patch information has been provided by the vendor yet. Users are advised to stay updated on this issue. Source: GBHackers.
5. UNC5820 Exploits FortiManager Zero-Day Vulnerability: The UNC5820 group has exploited a zero-day vulnerability in FortiManager, identified as CVE-2024-47575. Affected organizations are advised to apply the October 24 patch, review access logs for suspicious activity, and ensure a strong incident response plan. Source: Hackread.

Podcasts

1. Joe Rogan Refutes Rumors Of YouTube 'Censoring' Trump Podcast Episode: Joe Rogan has dismissed rumors of YouTube censoring an episode of his podcast featuring Trump. The episode was temporarily inaccessible due to a technical glitch, not censorship. The Trump campaign has also been dealing with cybersecurity issues, with reports of Chinese hackers compromising phone data. Source: benzinga.com
2. Cybersecurity Insights with Contrast CISO David Lindner: This podcast episode features David Lindner, CISO at Contrast, sharing his insights on cybersecurity. The episode is part of a series on Security Boulevard, which covers various aspects of cybersecurity. Source: securityboulevard.com
3. 3 Tips for Organizations to Shore Up Their Cyber Resilience Strategies This Fall: This podcast episode provides organizations with three tips to enhance their cyber resilience strategies. The episode is part of a series on Security Boulevard, which focuses on cybersecurity. Source: securityboulevard.com
4. A Closer Look at Verkada: This podcast episode features a discussion with Jake Leichtling of Verkada about the advances of security solutions at the company. The episode is part of a series on Security Today. Source: securitytoday.com
5. Relearning past lessons in assessing cloud risk: This podcast episode features a security analyst discussing the lessons learned from past cybersecurity breaches and the potential of Generative AI in cybersecurity. The episode is part of a series on TechTarget. Source: techtarget.com

Final Words

And that's a wrap for today's edition of 'ONSEC Cyber Daily'. As we navigate the ever-evolving landscape of cybersecurity, it's crucial to stay informed and vigilant. From cloud servers being targeted for secret cryptocurrency schemes to vulnerabilities in Microsoft Windows and Samsung devices, the threats are real and ever-present. Remember, knowledge is power. By staying updated on the latest cybersecurity news, you're taking a proactive step in protecting yourself and your organization from potential cyber threats. If you found today's newsletter helpful, why not share it with your friends and colleagues? Let's work together to create a safer digital world. Stay safe, stay informed, and see you in the next edition of 'ONSEC Cyber Daily'.