Welcome to ONSEC Cyber Daily!

We're thrilled to introduce our new section: "Wisdom from the ONSEC Founders' Vault." Tap into the expertise of our founders with exclusive insights and strategies to stay ahead in cybersecurity.

In today’s issue:

• Quantum computing threatens encryption as criminals near a breakthrough.
• U.S. water utilities face rising cyber risks—cyber insurance may be key.
• Instagram and WhatsApp scams rise with generative AI impersonations.
• Apple and Google roll out critical security patches for iOS, macOS, and Chrome.
• Stay updated with the latest CVEs to protect against ransomware and other threats.

Stay informed, stay secure—with ONSEC Cyber Daily!

Exploits Alert

1. CISA and FBI release secure by design alert on cross-site scripting: The FBI and CISA have issued guidelines to eliminate XSS vulnerabilities and promote secure coding practices. By adhering to these guidelines, developers can significantly lower the risk of cyber attacks. Source: CISA
2. Spring Framework Vulnerability: A severe vulnerability has been identified in the Spring framework, a widely used tool in the Java ecosystem. Administrators are encouraged to patch their systems immediately to prevent potential exploitation. Source: Spring.io
3. Windows Kernel Exploit: Two privilege escalation issues have been discovered in the Windows update process (CVE-2024-21302 and CVE-2024-38202). These vulnerabilities could potentially enable an attacker to downgrade the operating system. Source: Microsoft
4. IBM Java SDK Vulnerabilities: Several vulnerabilities have been discovered in IBM Java SDK and IBM Java Runtime affecting Rational Business Developer. The vulnerabilities are addressed in the Oracle April 2024 Critical Patch Update, plus CVE-2023-38264. Source: IBM
5. SonicWall VPNs Ransomware Target: SonicWall VPNs are being targeted by ransomware attacks exploiting CVE-2024-40766. Federal firms are given a deadline to patch up, as the vulnerability was added to CISA's Known Exploited Vulnerabilities (KEV) catalog. Source: SonicWall

Vulnerabilities & Patches

1. Apple Rolls Out Major Security Update to Patch macOS and iOS Vulnerabilities: Apple has released a significant security update addressing several vulnerabilities in macOS and iOS. The vulnerabilities were identified by researchers from Trend Micro's Zero Day Initiative and CrowdStrike's Counter Adversary. Source: Infosecurity Magazine
2. Local Privilege Escalation Vulnerability Affecting X.Org Server For 18 Years: A local privilege escalation vulnerability, CVE-2024-9632, has been publicly disclosed. This vulnerability has been affecting the X.Org Server for 18 years. OpenPaX has announced a free kernel patch as an open-source alternative to GrSecurity. Source: Phoronix
3. Unofficial fixes issued for Windows Themes zero-day: Unofficial fixes have been released for a Windows Themes zero-day vulnerability, CVE-2024-38030. This vulnerability was previously addressed by Microsoft as part of July Patch Tuesday updates. Source: SC Media
4. Patch now! Ransomware attacks on servers observed with CyberPanel: Publicly accessible admin interfaces are being exploited by ransomware attacks on servers with CyberPanel. The attackers are exploiting two critical vulnerabilities, CVE-2024-51567 and CVE-2024-51568. Source: Heise Online
5. Google Patches Critical Chrome Vulnerability Reported by Apple: Google has patched a critical Chrome vulnerability, CVE-2024-10487, reported by Apple. Mozilla has also patched high-severity flaws in Firefox. Source: SecurityWeek

Podcasts

1. AI Cyberattacks Rise but Businesses Still Lack Insurance - Security Boulevard: This podcast discusses the increasing prevalence of AI cyberattacks and the lack of insurance coverage for businesses. It emphasizes the need for businesses to understand and manage their cyber risks effectively. Source: Security Boulevard
2. A CISO's Guide to Mobile Security: Key Strategies from Jamf - The Tech Talks Daily Podcast: This episode provides a fresh perspective on a common cybersecurity question: What keeps a CISO awake at night? It offers key strategies for mobile security from Jamf. Source: Tech Talks Daily Podcast
3. Seceon's Comprehensive Cybersecurity Platform: Revolutionizing Threat Detection and Response: This podcast discusses Seceon's multi-layered security modules for robust cyber defense, revolutionizing threat detection and response. Source: Security Boulevard
4. Trust Rush - GMO GlobalSign: This podcast series, sponsored by top certificate authority GMO GlobalSign, focuses on Digital Trust and Identity Security. Source: Financial Times
5. Risk & Repeat: SEC cracks down on cybersecurity disclosures - TechTarget: This episode covers the SEC charging four companies for downplaying SolarWinds attacks, raising questions about transparency in cybersecurity disclosures. Source: TechTarget

Wisdom from the ONSEC Founders' Vault

White, black, gray, or crystal? Unpacking pentests. Explore the key differences between white box, black box, gray box, and crystal box testing to see how each approach helps identify vulnerabilities and enhance security. Source

Final Words

As we wrap up another edition of ONSEC Cyber Daily, we hope you've found our insights on the quantum threat, the importance of cyber insurance, and the latest vulnerabilities and patches useful. Remember, in the ever-evolving world of cybersecurity, staying informed is your first line of defense. We encourage you to share this newsletter with your friends and colleagues so they too can stay one step ahead of cybercriminals. After all, cybersecurity is a shared responsibility and together, we can create a safer digital world. Stay safe, stay informed, and see you in the next edition of ONSEC Cyber Daily.

#news