Welcome to the ONSEC Cyber Daily! Today, we're diving into the world of Android vulnerabilities, with Google patching two zero-day vulnerabilities that have been exploited in targeted attacks. The FBI has issued a warning about cybercriminals taking over email accounts via stolen session cookies, highlighting the importance of regular updates and strong security measures. In the realm of cybersecurity innovation, Shorooq is leading Corgea's $2.6 million seed round to revolutionize cybersecurity with AI-driven vulnerability remediation. This could potentially reduce alert fatigue and increase security efficiency. We also have a slew of updates from Google, Samsung, and HPE Aruba, all working tirelessly to patch vulnerabilities and enhance the security of their devices. From Android phones to Synology devices, the tech giants are leaving no stone unturned in their quest for a safer digital world. In our podcast corner, we have a range of topics from cyber insurance to the role of AI in cybersecurity. We also delve into the cybersecurity landscape of 2024, discussing ransomware, cloud security, and phishing. Stay tuned for all this and more in today's issue of ONSEC Cyber Daily. Stay safe, stay updated!

Exploits Alert

1. Update your Android: Google patches two zero-day vulnerabilities: Google has released patches for two zero-day vulnerabilities affecting Android devices. The FBI has also issued a warning about cybercriminals exploiting these vulnerabilities to take over email accounts via stolen session cookies. Users are advised to update their devices immediately. Source: Malwarebytes
2. Shorooq leads Corgea's $2.6mln seed round to revolutionize cybersecurity with AI-driven vulnerability remediation: Corgea, a cybersecurity firm, has raised $2.6 million in a seed round led by Shorooq to develop AI-driven vulnerability remediation solutions. The company aims to revolutionize cybersecurity, reduce alert fatigue, and increase the efficiency of vulnerability management. Source: Zawya

Vulnerabilities & Patches

1. Android Zero-Day Vulnerabilities Patched by Google: Google has patched two zero-day vulnerabilities, CVE-2024-43047 and CVE-2024-43093, that were under limited, targeted exploitation. These vulnerabilities could allow an attacker to escalate privileges on targeted devices. It is crucial for all Android users to update their devices to the latest security patch. Source: Malwarebytes, Forbes, TechNadu, Candid.Technology, Vulnera, Bleeping Computer.
2. RISK:STATION (CVE-2024-10443) – Unpatched Synology Devices at Risk of RCE: A zero-day vulnerability demonstrated during the recent Pwn2Own Ireland 2024 contest puts unpatched Synology devices at risk of Remote Code Execution (RCE). Device owners are urged to apply patches to mitigate this risk. Source: SOCRadar.
3. HPE Aruba Patches Code-Smuggling Loopholes: HPE Aruba has patched a total of six security vulnerabilities, including CVE-2024-42509, in its access points. These vulnerabilities could potentially allow code smuggling. Source: heise online.
4. Chrome Security Update for Multiple High Severity Vulnerabilities: Google has released a patch for multiple high severity vulnerabilities in Chrome, including a use-after-free bug in Chrome's Family Experiences component (CVE-2024-10826). Users are advised to update their Chrome browsers to the latest version. Source: Cybersecurity News.
5. Samsung's Security Update for Galaxy Users: Samsung has released a security patch that addresses two actively exploited vulnerabilities. The primary fix in Samsung's update addresses CVE-2024. Galaxy users are advised to update their devices to the latest security patch. Source: PhoneWorld.

Podcasts

1. Shopping For Cyber Insurance? Three Questions To Ask: This podcast episode provides listeners with key questions to consider when shopping for cyber insurance. It emphasizes the importance of understanding the coverage, the claim process, and the insurer's reputation. Source: IMDb
2. EP 151: Chris Rock - Darknet Diaries: Chris Rock, a renowned security researcher, shares his experiences as a black hat incident responder. He provides insights into the challenges and complexities of his job. Source: Darknet Diaries
3. Planning A Merger Or Acquisition? Ask These Five Cyber Questions First – Craig Davies: Craig Davies discusses the importance of considering cybersecurity during mergers and acquisitions. He suggests five critical questions to ask to ensure a secure transition. Source: SC World
4. What the Chainsmokers bring to the cap table for cybersecurity startup Chainguard: This episode provides an inside look at the role of the Chainsmokers in the cybersecurity startup Chainguard. It explores their contribution to the company and the cybersecurity landscape. Source: TechCrunch
5. Apple @ Work Podcast: Password security 101: This episode features a discussion with Gerrit Garbereder from Nordpass about password security. It offers tips on how to protect passwords from hackers and ensure online safety. Source: StartupNews.fyi

Wisdom from the ONSEC Founders' Vault

When you're so bored, you start debugging someone else's code: bug hunting in a random Cloud-Native project. The article details the process of uncovering and exploiting a critical Safemode bypass vulnerability in the Foreman project, demonstrating how to execute arbitrary code despite built-in protections and highlighting broader implications for other projects using the Safemode library. Source.

Final Words

As we wrap up today's edition of 'ONSEC Cyber Daily', we leave you with a reminder to stay vigilant and proactive in the face of ever-evolving cyber threats. From Google patching two zero-day vulnerabilities to the FBI's warning about cybercriminals taking over email accounts, it's clear that cybersecurity is not a one-and-done deal. It's a continuous process that requires your attention and action. We're excited about the potential of AI-driven vulnerability remediation to revolutionize cybersecurity, and we're keeping a close eye on Corgea's progress following their successful seed round. Remember, updating your devices is not just about accessing the latest features; it's about protecting your data and privacy. Don't ignore those update notifications - they're your first line of defense against cyber threats. We hope you found today's newsletter informative and helpful. If you did, why not share 'ONSEC Cyber Daily' with your friends and colleagues? They might find it just as useful as you do. Stay safe, stay updated, and we'll see you in the next edition of 'ONSEC Cyber Daily'.