Welcome to your ONSEC Cyber Daily dose for November 23rd. Today, we delve into the world of vulnerabilities and patches. Google's AI has identified 26 new vulnerabilities in open-source projects, highlighting the importance of staying updated. Small businesses are facing heightened vulnerability, with cyber insurance becoming a necessity. In the manufacturing sector, effective vulnerability management programs are crucial for quick identification and mitigation of vulnerabilities. Meanwhile, the Indian government has issued a critical warning for Apple users, advising immediate updates to protect against cyber attacks. The EPA has issued a drinking water warning to millions of customers, citing the attractiveness of water and wastewater systems to cyberattacks. In the ransomware world, we see an increase in Fog and Akira ransomware, with SonicWall devices being potentially actively exploited due to unpatched vulnerabilities. In the realm of firewalls, thousands of Palo Alto Networks firewalls have been hijacked, with experts warning of exploitation. The company has advised customers to update their systems to receive the latest patches. Apple devices are also in the spotlight, with CISA warning of Apple & Oracle Agile vulnerabilities being exploited in the wild. Linux Kernel vulnerabilities have also been patched, further emphasizing the importance of staying updated. In our CISO insights, we learn that only 45% of American companies have a chief information security officer (CISO), making them vulnerable to cyber threats. We also bring you the latest from the podcast world, discussing everything from privacy frameworks to the challenges of scaling AppSec. Finally, we look at the public sector, which is taking longer to recover from cyber incidents, and the geopolitical influences on Australia's force posture. Stay tuned for more updates and remember, stay safe, stay updated.

Exploits Alert

1. Google's AI Identifies 26 New Vulnerabilities in Open-Source Projects: Google's AI has identified 26 new vulnerabilities in various open-source projects. Small businesses are particularly vulnerable to these risks. Cybersecurity measures and cyber insurance are recommended for mitigation. Source: MSSP Alert
2. Cybersecurity Challenges in the Manufacturing Sector: The manufacturing sector faces significant cybersecurity challenges. An effective vulnerability management program is essential for quick identification and mitigation of vulnerabilities on all assets. Source: MSSP Alert
3. Indian Government Issues Critical Warning for Apple Users: The Indian government has issued a warning about critical vulnerabilities in older Apple software and advises immediate updates. Devices running outdated versions are at risk of cyber attacks. Source: Mint
4. Drinking Water Warning Issued by EPA: The EPA has issued a warning to millions of customers about the risk of cyber attacks on drinking water and wastewater systems. These systems are considered attractive targets for cyber attacks. Source: MSN

Vulnerabilities & Patches

1. SonicWall Devices Vulnerability (CVE-2024-40766): SonicWall devices are affected by the CVE-2024-40766 vulnerability, which is potentially actively exploited. The affected devices have not been patched against this vulnerability. SonicWall urges users to update their systems. Source: B2B Cyber Security
2. PAN-OS Vulnerabilities (CVE-2024-0012 and CVE-2024-9474): Security teams are recommended to upgrade to the latest version of PAN-OS that includes a patch for these vulnerabilities. The vulnerabilities are being exploited in the wild. Source: Wiz Blog
3. Apple Devices Vulnerabilities (CVE-2024-44308 and CVE-2024-44309): Apple has fixed the issues with improved checks in the Javascript patch (CVE-2024-44308), and the WebKit fix (CVE-2024-44309) applies improved state. Users are urged to update their Apple devices as soon as possible. Source: Macworld
4. Linux Kernel Vulnerabilities (CVE-2024-53093 and CVE-2024-53094): Security issues have been discovered in the kernel's handling of NVMe multipath (CVE-2024-53093) and RDMA/siw (CVE-2024-53094) functionality. Patches for these vulnerabilities have been released. Source: Cyber Security News
5. Palo Alto Networks Firewall Vulnerabilities (CVE-2024-0012 and CVE-2024-9474): Over 2,000 Palo Alto Networks firewalls have been compromised due to these vulnerabilities. A functional exploit chaining CVE-2024-0012 and CVE-2024-9474 is publicly available. Users are advised to patch the vulnerabilities. Source: The Record Media

Podcasts

1. Cybersecurity Insights with Contrast CISO David Lindner: This podcast highlights the risks associated with companies operating without a Chief Information Security Officer (CISO). It emphasizes that only 45% of American companies have a CISO, potentially leaving them vulnerable to cyber threats. Source: Security Boulevard
2. Week in Review: Water system threat, CISO liability insurance: This podcast discusses the recent threats to water systems and the importance of CISO liability insurance. It also features a voice actor and narrator for corporate media and audiobooks. Source: CISO Series
3. SURVEILLED Director Matthew O'Neill Talks Ronan Farrow & Pegasus: This episode features a discussion with Matthew O'Neill about the cyber-intelligence firm NSO Group and its spyware capabilities. Source: Patch
4. Bowling with Bumpers: Using a Privacy Framework to Set Your Company Up for a Strike: In this episode, Kevin Angle discusses the importance of using a privacy framework to protect your company. Source: Holland & Knight
5. AI messes with scammers, autonomous endpoint security, malware targets Excel – ESW #385: This podcast episode discusses how AI is being used to combat scammers, the importance of autonomous endpoint security, and how malware is targeting Excel. Source: SC Magazine

Final Words

And that's a wrap for today's edition of 'ONSEC Cyber Daily'. We hope you found our insights on the latest vulnerabilities, patches, and cybersecurity challenges valuable. Remember, staying updated is your first line of defense in this ever-evolving cyber landscape. If you know someone who could benefit from our daily dose of cybersecurity news, feel free to share this newsletter with them. Together, we can create a safer digital world. Stay safe, stay updated, and see you in the next edition of 'ONSEC Cyber Daily'.