Welcome to the ONSEC Cyber Daily for November 21st. Today's issue is packed with critical updates and warnings from across the globe. We kick off with a warning from the EPA about cybersecurity vulnerabilities in water utilities, affecting millions of customers. Meanwhile, the Indian government's cybersecurity wing has issued a critical warning about a Chrome bug that could allow hackers to gain access. In software news, VMware's vCenter Server, a cornerstone for managing virtualized infrastructure, is under attack, with CISA warning of active exploitation. Ubuntu Server is also on high alert after the discovery of five critical Local Privilege Escalation vulnerabilities. Apple users, both iPhone and Mac, are urged to update their devices immediately due to multiple vulnerabilities that have been actively exploited. Android users are not safe either, with the government warning against vulnerabilities in outdated Android versions. In regulatory news, the EU's "GDPR-level" Cyber Resilience Act has come into force, requiring companies to report cybersecurity incidents within 24 hours. On the human side of cybersecurity, we delve into the issue of burnout among cybersecurity workers, which is putting businesses at risk. In the world of cryptocurrency, Bitcoin faces a 'Bank Run' vulnerability, reminding us of the challenges it faces in the changing financial space. We also have a plethora of updates on patches for various vulnerabilities, including those in Apple products, Ubuntu Linux, D-Link VPN routers, and Citrix Session Recording. Finally, we wrap up with a selection of insightful cybersecurity podcasts, discussing topics from AI and leadership to security awareness training and the effectiveness of location data as a weapon. Stay tuned for more updates and stay safe in the cyberspace!

Exploits Alert

1. Drinking Water Warning Issued by EPA to Millions of Customers: The Environmental Protection Agency (EPA) has issued a warning about significant cybersecurity vulnerabilities at water utilities. This follows a similar alert issued in May, emphasizing the need for improved security measures in this sector. Source: Newsweek
2. Govt warns of Chrome bug that can let hackers steal: The Indian government's cybersecurity wing has issued a critical warning about a vulnerability in Chrome that could allow malicious hackers to gain access. Users are advised to update their browsers to the latest version to mitigate this risk. Source: Republic World
3. CISA Warns of VMware VCenter Vulnerabilities Actively Exploited in Attacks: The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about active exploitation of vulnerabilities in VMware's vCenter Server. As a cornerstone for managing virtualized infrastructure, vCenter Server is a high-value target for cybercriminals. Source: Cybersecurity News
4. 10-Year Old Flaws In Ubuntu Server needrestart Package Let Attackers Gain Root Access: The cybersecurity community is on high alert following the discovery of five critical Local Privilege Escalation vulnerabilities in the Ubuntu Server needrestart package. These decade-old flaws could allow attackers to gain root access. Source: Cybersecurity News
5. Alert Android users! Govt. warns against vulnerabilities: The government has issued a warning to Android users about vulnerabilities in outdated versions of the operating system. Devices without the latest security patches are at a heightened risk of being targeted by cybercriminals. Source: MSN

Vulnerabilities & Patches

1. Apple Addressed Two Zero-Day Flaws In Intel-based Macs: Apple has released patches for two zero-day vulnerabilities in its Intel-based Macs, alongside fixes for iPhones, iPads, and Apple Vision. Users are advised to update their devices immediately. Source: Latest Hacking News
2. Ubuntu Linux has a worrying security flaw that may have gone unseen for a decade: Ubuntu Linux has been found to have five vulnerabilities, tracked as CVE-2024-48990, CVE-2024-48991, CVE-2024-etc. A patch is available and users are urged to apply it immediately. Source: TechRadar
3. D-Link won't patch its older VPN routers, leaving critical vulnerability unaddressed: D-Link has decided not to patch a critical vulnerability in its older VPN routers. The vulnerability was reported by security researcher 'delsploit' but has not been assigned a CVE identifier. Source: TechSpot
4. Exploitation Attempts Target Citrix Session Recording Vulnerabilities: Two recently patched vulnerabilities in Citrix Session Recording, tracked as CVE-2024-8068 and CVE-2024-8069, have been targeted for exploitation. Users are advised to ensure their systems are updated. Source: SecurityWeek
5. macOS WorkflowKit Race Vulnerability Let Malicious Apps Intercept Shortcuts: A vulnerability in macOS WorkflowKit, tracked as CVE-2024-27821, could allow malicious apps to intercept shortcuts. Apple has not yet released a patch, and users are advised to avoid importing shortcuts from unknown sources. Source: Cybersecurity News

Podcasts

1. Perspectives on AI, Cybersecurity, Leadership and more at CHIME 2024: This podcast episode discusses the intersection of AI, cybersecurity, and leadership, with a focus on the healthcare industry. It also includes recommendations on medical device cybersecurity to the FDA. Source: Healthcare IT Today
2. The Informed Board: This podcast episode provides insights into best practices for boards facing an increased risk of cybersecurity breaches and new mandatory regulations. Source: Skadden
3. Are Security Awareness Training Platforms Effective?: This episode questions the effectiveness of security awareness programs, a key part of any security program. Source: CISO Series
4. Digital arrest scams and stream-jacking | Smashing Security podcast: This episode discusses a case where a woman hid under her bed after scammers told her she was under "digital arrest", and how hackers are hijacking streams. Source: YouTube
5. When location data becomes a weapon: This episode from CyberWire discusses the potential misuse of location data and its implications on personal and national security. Source: The CyberWire

Final Words

As we wrap up today's edition of 'ONSEC Cyber Daily', it's clear that the cyber landscape is ever-evolving. From the EPA's warning about cybersecurity vulnerabilities in water utilities to the Indian government's alert about a Chrome bug, the need for vigilance and proactive measures is more critical than ever. Remember, cybersecurity is not just a one-man job. It's a collective effort. So, let's make sure we're all doing our part. Update your systems, be aware of the vulnerabilities, and most importantly, share this information. If you found today's newsletter helpful, please consider sharing it with your friends, colleagues, and anyone else who might benefit from staying informed about the latest in cybersecurity. Stay safe, stay updated, and see you in the next edition of 'ONSEC Cyber Daily'.