Welcome to your ONSEC Cyber Daily dose for November 26th. Today, we're diving into a sea of vulnerabilities and warnings that are making waves in the cybersecurity world. First up, Palo Alto's certification validation flaw is causing a stir, allowing attackers to escalate privileges. Meanwhile, Android 15 users are on high alert as the government issues a high-risk warning due to multiple vulnerabilities found in the operating system. But it's not just Android users who need to be cautious. Apple users have also been issued an urgent warning due to critical vulnerabilities found in iPhones, Macs, and Safari. In other news, CISA has added a known exploited vulnerability to its catalog, urging all organizations to reduce their exposure to cyberattacks. We also take a look at the recent Zyxel Firewall vulnerability that's being exploited in ransomware attacks, and the critical 7-Zip vulnerability that lets attackers execute arbitrary code. Android and Google Pixel devices are under the spotlight with seven new flaws discovered, and CISA is urging agencies to patch a critical "Array Networks" flaw amid active attacks. In the podcast world, we're discussing cargo theft trends during the holiday season, the potential need for a social media ban, and novel attacks and creative phishing angles. So, buckle up and get ready for a deep dive into the world of cybersecurity. Stay safe, stay informed, and stay tuned to ONSEC Cyber Daily.

Exploits Alert

1. Palo Alto Certification Validation Flaw: A critical vulnerability in Palo Alto Networks' certification validation could allow attackers to escalate privileges. Users are urged to update their systems to mitigate the risk. Source: Cyber Security News.
2. High Risk Warning for Android 15 Users: The government's cybersecurity agency has issued a high-risk warning for Android 15 users due to multiple vulnerabilities found in the operating system. Users are advised not to ignore this warning and take necessary precautions. Source: India Today.
3. CISA Adds Known Exploited Vulnerability to Catalog: The Cybersecurity and Infrastructure Security Agency (CISA) has added a known exploited vulnerability to its catalog. While this only applies to FCEB agencies, all organizations are urged to reduce their exposure to cyberattacks. Source: CISA.
4. Recent Zyxel Firewall Vulnerability: A recent vulnerability in Zyxel Firewall has been exploited in ransomware attacks. Users are advised to update their systems to the latest version to avoid falling victim to these attacks. Source: SecurityWeek.

Vulnerabilities & Patches

1. New Flaws in Android & Google Pixel Devices Let Attackers Elevate Privileges: A high severity vulnerability, CVE-2024-0017, has been discovered in Android and Google Pixel devices that could allow attackers to elevate privileges. The time taken to patch these vulnerabilities underscores their importance. Source: Cybersecurity News.
2. CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks: CISA has flagged a critical flaw in Array Networks, CVE-2023-28461, for active exploitation and is urging agencies to patch it by December 16. Source: The Hacker News.
3. Critical QNAP Vulnerability Let Attackers Execute Remote Code: Two vulnerabilities, CVE-2024-48860 and CVE-2024-48861, have been found in QNAP that could let attackers execute remote code. QNAP has responded swiftly by releasing a patch to address these threats. Source: Cybersecurity News.

Podcasts

1. APDR Podcast Episode 73 with host Kym Bergmann - Asia Pacific Defence Reporter: The SEA 3000 General Purpose Frigate shortlist has been revealed, confirming the leaked information that Germany and Japan are the contenders. Source: Asia Pacific Defence Reporter
2. Podcast: Holiday brings a troubling trend in cargo theft - Land Line Magazine: Keith Lewis from CargoNet discusses the rise in cargo theft during the holiday season, attributing it to organized crime rings. Source: Land Line Magazine
3. Episode 622 of the top-rating Tech Guide podcast: This episode explores the potential need for a social media ban, with digital wellbeing expert Dr Joanne Orlando discussing possible alternatives. Source: Tech Guide
4. Novel attacks and creative phishing angles - CyberWire: APT28 is utilizing a new technique to infiltrate organizations through nearby WiFi networks, while the UK is highlighting potential threats from Russia. Source: CyberWire
5. Government Contracts Legal Roundup | Episode 45 (Podcast): David Robbins reviews a series of recent case decisions in this episode of the Government Contracts Legal Roundup. Source: Mondaq

Final Words

And that's a wrap for today's ONSEC Cyber Daily! We've covered everything from Palo Alto's certification validation flaw to the urgent warnings for Android 15 and Apple users. We've also delved into the recent Zyxel Firewall vulnerability and the critical 7-Zip vulnerability. Remember, staying informed is your first line of defense against cyber threats. So, don't forget to patch up those vulnerabilities and keep an eye out for any suspicious activities. We hope you found this information useful. If you did, why not share it with your friends and colleagues? After all, cybersecurity is a shared responsibility. Join us again tomorrow as we continue to bring you the latest in cybersecurity news, vulnerabilities, and threats. Stay safe, stay informed, and keep those cyber defenses up! Until next time, this is ONSEC Cyber Daily, signing off.