Welcome to today's issue of ONSEC Cyber Daily! As we navigate the ever-evolving cyber landscape, we're seeing a significant shift in cyber attackers exploiting zero-day vulnerabilities. The UK and its allies have issued a stark warning, with the Five Eyes cybersecurity agencies reporting a notable increase in these types of attacks. In the gaming world, a team of CyberFirst Bursary alumni are set to represent the UK at the inaugural Kunoichi Cyber Games, showcasing the importance of cybersecurity skills in the digital age. Meanwhile, the finance, healthcare, and IT sectors remain the most vulnerable to cyberattacks, with high-risk vulnerabilities riddling these critical sectors. Cybercriminals are focusing less on sharing proof-of-concepts on forums and more on reserving knowledge about these vulnerabilities. In response to these threats, Microsoft has released a patch for four zero-days and 91 flaws, including the notable CVE-2024-43451. However, it's not all smooth sailing, with D-Link announcing it won't patch 60,000 older modems, leaving them vulnerable to CVE-2024-10914. In our podcast corner, we have a range of cybersecurity discussions, from the argument for more cybersecurity startups to the double threat of cyber espionage and financial crime from North Korea. Stay tuned for more updates and remember, stay safe in the cyber world!

Exploits Alert

1. UK and allies warn about shift in cyber attackers exploiting zero-day vulnerabilities: The UK and its allies have issued a warning about cyber attackers increasingly exploiting zero-day vulnerabilities. This shift in tactics poses a significant threat to cybersecurity. Source: Wired Gov
2. Five Eyes Warns Of Rise In Zero-day Exploits: The Five Eyes alliance has reported a significant increase in hackers targeting previously undisclosed vulnerabilities, highlighting the rise in zero-day exploits. Source: Dataconomy
3. These three critical sectors are riddled with high-risk vulnerabilities: The finance, healthcare, and IT sectors are among the most vulnerable to cyber attacks due to high-risk vulnerabilities. This highlights the need for increased cybersecurity measures in these sectors. Source: ITPro
4. Zero-Days Wins the Prize for Most Exploited Vulns: Cybercriminals are increasingly exploiting zero-day vulnerabilities, focusing less on sharing proof-of-concepts on forums and more on reserving knowledge about these vulnerabilities. Source: Dark Reading
5. Top exploited vulnerabilities revealed as CISA warns of growing enterprise zero day threat: The National Cyber Security Centre (NCSC) and Five Eyes partners, including CISA, have issued a warning about the growing threat of enterprise zero-day exploits. They have also revealed the top exploited vulnerabilities. Source: The Stack

Vulnerabilities & Patches

1. CVE-2024-43451 (Windows Zero-day Vulnerability): Microsoft has urged users to update their Windows systems after discovering a zero-day vulnerability, CVE-2024-43451. This NT LAN Manager hash disclosure spoofing vulnerability could expose the NTLM authentication. The vulnerability has been exploited in the wild for months and affects all supported Windows versions. Source: Dataconomy, Help Net Security, Kaspersky, Cybersecurity News
2. CVE-2024-10914 (D-Link Modem Vulnerability): D-Link has decided not to patch 60,000 older modems found vulnerable to CVE-2024-10914, a command injection flaw with a 9.2 severity rating. The company believes these modems are not worth saving. Source: MSN
3. CVE-2023-3519 (Most Exploited Vulnerability of 2023): The FBI, CISA, and NSA have revealed that zero-day exploits were the primary concern in 2023, with CVE-2023-3519 at the top of the list. Businesses are urged to patch as soon as possible to stay safe. Source: MSN, TechRadar
4. CVE-2014-2120 (Cisco ASA Vulnerability): Organizations are urged to apply Cisco-provided patches for CVE-2014-2120 or to disable the WebVPN feature if patches cannot be implemented. This vulnerability is among the five newly exploited vulnerabilities added to CISA's catalog. Source: The Cyber Express
5. CVE-2024-23666 (Fortinet Product Flaws): Fortinet has patched critical flaws that affected multiple products, including a client-side enforcement of server-side security vulnerability (CWE-602) in CVE-2024-23666. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the FortiManager vulnerability to its list of critical vulnerabilities. Source: GBHackers, Cybersecurity News

Podcasts

1. NAB Security Podcast: This podcast provides insights about cybersecurity and fraud, offering practical tips on how to stay safe. The focus is on how customers can benefit from digital ID. Source: NAB News.
2. CISO Series: The Argument For More Cybersecurity Startups: This episode discusses the need for more cybersecurity startups. It features a conversation with Sid and Ross, who share their insights on the topic. Source: CISO Series.
3. Threat Vector: Cyber Espionage and Financial Crime: This episode from Palo Alto Networks' podcast discusses North Korea's double threat of cyber espionage and financial crime. It's a premier destination for security thought leadership. Source: CyberWire.
4. Black Nerds Matter: Jasmine Suarez: This podcast episode features Jasmine Suarez discussing security policies and innovative approaches in cybersecurity. Source: WMNF 88.5 FM.
5. Smashing Security: Who needs a laptop to hack when you have a Firestick?: This episode discusses the potential security risks associated with using a Firestick for hacking. The podcast warns about the ramping up of emergency data request scams. Source: YouTube.

Wisdom from the ONSEC Founders' Vault

Exploring Online Gambling in Europe: Understanding Cybersecurity Challenges The evolution of online gambling in Europe highlights its market growth, regulatory challenges, and critical need for robust cybersecurity measures to combat increasing cyber threats. Source

Final Words

As we wrap up today's edition of 'ONSEC Cyber Daily', we'd like to remind you that the cyber landscape is constantly shifting. With cyber attackers exploiting zero-day vulnerabilities and the rise in cyberattacks, it's more important than ever to stay informed and vigilant. We hope that our daily updates, from the UK's CyberFirst Bursary alumni representing at the Kunoichi Cyber Games to the warnings from Five Eyes and the National Cyber Security Centre, help you navigate this complex landscape. Remember, knowledge is power. Sharing this power with your friends and colleagues can make a significant difference in the fight against cybercrime. So, don't forget to share 'ONSEC Cyber Daily' with them. Stay safe, stay informed, and let's create a safer cyber world together. Until tomorrow, this is 'ONSEC Cyber Daily', signing off.