Good morning, ONSEC Cyber Daily readers! We've got a lot to cover today, so let's dive right in. First up, Google Pixel users, you have 72 hours to update your phone. This urgent warning comes as two vulnerabilities have been discovered, prompting the US cybersecurity agency to issue an alert. Don't delay, update now! Apple users, you're not off the hook either. CERT-In has issued a critical security alert for you too. Cybercriminals are always looking for ways to exploit vulnerabilities, so it's essential to stay alert and update your devices promptly. In other news, a critical 7-Zip vulnerability has been discovered that allows attackers to execute arbitrary code. Similarly, a critical QNAP vulnerability has been found that lets attackers execute remote code. Both vulnerabilities have been swiftly addressed with patches, so make sure to update your systems. On the legal front, the DoJ has seized credit card marketplace PopeyeTools, while gambling giant IGT has suffered a cyberattack. Windows has also blocked updates on some gaming PCs. In the world of social media, PR professionals are reminded of the importance of monitoring trends to maintain relevance and effectively engage with their audience. Finally, we delve into the world of podcasts. We discuss deepfake fraud and data brokers tracking military personnel on Security Boulevard. We also explore whether business leaders are taking cybersecurity seriously with Tony Vizza and Louis Cremen on the Cyber Uncut podcast. Stay safe, stay updated, and remember, cybersecurity is everyone's responsibility.

Exploits Alert

1. Google Pixel Vulnerabilities: Google Pixel users are urged to update their phones within 72 hours due to the discovery of new vulnerabilities. The US cybersecurity agency has issued an alert, emphasizing the importance of timely updates to prevent potential cyber threats. Source: Forbes
2. Apple Devices Critical Security Alert: CERT-In has issued a critical security alert for Apple users, urging them to update their devices immediately. Cybercriminals are constantly finding ways to exploit vulnerabilities, making regular updates essential for security. Source: The Hans India
3. 7-Zip Vulnerability: A critical vulnerability in 7-Zip could allow attackers to execute arbitrary code. Users are advised to update their software to the latest version to protect against potential cyberattacks. Source: Cyber Security News
4. Apple Users Urgent Warning: The government has issued an urgent warning for Apple users due to the discovery of critical vulnerabilities in iPhones, Macs, and Safari. Users are urged to update their devices promptly to prevent potential data theft. Source: Hindustan Times

Vulnerabilities & Patches

1. Critical QNAP Vulnerability Let Attackers Execute Remote Code: QNAP devices are susceptible to remote code execution due to vulnerabilities CVE-2024-48860 and CVE-2024-48861. QNAP has promptly released a patch to address these issues. Source: Cyber Security News
2. Google Pixel Warning—Update Your Phone In Next 72 Hours: Google Pixel users are urged to update their devices as soon as possible due to a vulnerability (CVE-2024-43047). Qualcomm has also encouraged Android OEMs to deploy patches on their released devices. Source: Forbes

Podcasts

1. A Marketing Minute with NP Strategy | Crafting Your Social Media Playbook - JD Supra: This podcast emphasizes the importance of monitoring trends for PR professionals. It's not just a strategic advantage, but essential for maintaining relevance and effectively engaging with the audience. Source: JD Supra
2. DoJ seizes PopeyeTools, IGT suffers attack, Windows update block - CISO Series: The Department of Justice has seized credit card marketplace PopeyeTools. In other news, gambling giant IGT has suffered a cyberattack, and a Windows update has been blocked on some gaming PCs. Source: CISO Series
3. Deepfake Fraud, Data Brokers Tracking Military Personnel - Security Boulevard: This episode discusses the rise of deepfake fraud and the tracking of military personnel by data brokers. It also explores how the "gamification" of security awareness training can reduce cyber threats. Source: Security Boulevard
4. PODCAST: Are business leaders taking cyber security seriously? With Tony Vizza and Louis Cremen: In this episode of the Cyber Uncut podcast, independent cyber security executive Tony Vizza and Lumify lead cyber security trainer Louis Cremen discuss whether business leaders are taking cyber security seriously. Source: Cyber Daily

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily! From Google Pixel to Apple, we've covered the latest vulnerabilities and the urgent need for updates. Remember, staying alert and keeping your devices updated is your first line of defense against cyber threats. We've also touched on the critical QNAP vulnerability and the swift response from the company. In the world of cyber security, swift action can make all the difference. We've also brought you the latest from the world of PR and marketing, reminding us all that staying relevant and engaging is key in this fast-paced digital world. We've also highlighted the latest cyber attacks and the growing threat of deepfake fraud. It's a reminder that the cyber landscape is constantly evolving and we need to stay one step ahead. Finally, we've shared some interesting insights from the Cyber Uncut podcast. Are business leaders taking cyber security seriously? It's a question we all need to ask ourselves. Remember, sharing is caring. If you found this newsletter helpful, don't forget to share it with your friends and colleagues. Let's spread the word and make the cyber world a safer place for all. Stay safe and stay updated with ONSEC Cyber Daily. See you tomorrow!