Good morning, ONSEC Cyber Daily readers! Today's newsletter is packed with critical updates and insights you won't want to miss. We kick off with an urgent mobile security alert issued by the US over Chinese cyber threats. CISA is advising iPhone users to enable Lockdown Mode to restrict potential entry points for cyberattacks. In the realm of encrypted messaging, CISA is urging the use of end-to-end encrypted services like Signal. Meanwhile, multiple vulnerabilities have been discovered in SHARP routers, allowing attackers to execute arbitrary code. Google Chrome users in India are also on high alert, with the government issuing a high-risk warning due to multiple vulnerabilities. And it's not just India; Rhode Island's auditor general has warned the state about cybersecurity vulnerabilities as well. In patch news, Fortinet has released critical patches for FortiWLM and FortiClient EMS vulnerabilities, while Samsung and Chrome have rolled out their final updates of 2024. But it's not all doom and gloom. We've also rounded up some of the most popular cybersecurity podcast episodes of 2024, including discussions on Christmas scams, the future of cybersecurity, and the evolution of cybersecurity marketing. Stay safe, stay informed, and stay tuned for more updates in tomorrow's issue of ONSEC Cyber Daily.

Exploits Alert

1. US issues urgent mobile security alert over Chinese cyber threats: The US has issued an urgent security alert for iPhone users, advising them to enable Lockdown Mode. This feature is designed to restrict potential entry points for cyberattacks by limiting app access. Source: Tech Monitor
2. CISA Urges Use of End-to-End Encrypted Messaging Services like Signal: The Cybersecurity and Infrastructure Security Agency (CISA) is urging the use of end-to-end encrypted messaging services, such as Signal, to enhance cybersecurity. Source: Cyber Security News
3. Multiple SHARP Routers Vulnerabilities Let Attackers Execute Arbitrary Code: Multiple vulnerabilities have been discovered in SHARP routers, allowing attackers to execute arbitrary code. The discovery was made by Shuto Imai of LAC Co., Ltd., who coordinated the disclosure through JPCERT/CC. Source: GBHackers
4. Govt issues high-risk warning for Google Chrome users in India: The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity alert for all Chrome users in India due to multiple vulnerabilities. Source: MSN
5. Rhode Island auditor general warned state about cybersecurity vulnerabilities: The Rhode Island auditor general has warned the state about cybersecurity vulnerabilities. Multiple agencies are investigating how the system was vulnerable to a cyberattack. Source: MSN

Vulnerabilities & Patches

1. Fortinet Patches Critical FortiWLM Vulnerability (CVE-2023-34990): A critical security defect in Fortinet's FortiWLM has been patched. The vulnerability, a relative path traversal issue, could have been exploited, potentially leading to sensitive data exposure or command injection. Source: SecurityWeek
2. Hackers Exploiting FortiClient EMS Vulnerability (CVE-2023-48788): A vulnerability in FortiClient EMS, disclosed in March 2024, is being exploited in the wild. Patches have been released in versions 7.0.11 and 7.2.3. Source: CyberSecurityNews
3. Samsung's Final Galaxy Update of 2024 (CVE-2024-38408): Samsung's final Galaxy update of 2024 includes a patch for CVE-2024-38408, a vulnerability related to Qualcomm chipsets. The patch is also included in the December 2024 security patch for other Android devices. Source: 9to5Google
4. Chrome 131 Update Patches High-Severity Memory Safety Bugs (CVE-2024-12692): Google has patched a high-severity memory safety bug in Chrome 131. The bug, a type confusion flaw in the browser's V8 JavaScript engine, could potentially allow for remote code execution. Source: SecurityWeek
5. Critical Security Vulnerability in Apache Struts (CVE-2024-53677): Developers have patched a critical security vulnerability in Apache Struts that was being exploited by attackers. Users are urged to update immediately to protect their systems. Source: heise online

Podcasts

1. Unpacking Christmas scams | Unlocked 403 cybersecurity podcast (ep. 9): In this episode, ESET Global Security Advisor Jake Moore discusses how cybercriminals exploit the festive spirit. The podcast provides valuable insights into the various scams prevalent during the holiday season. Source: WeLiveSecurity
2. Why Big Data Will Rule Cybersecurity in 2025 - CyberWire: This episode of Threat Vector discusses the increasing role of big data in cybersecurity. The podcast is a premier destination for security thought leadership, offering insights into the future of cybersecurity. Source: CyberWire
3. New Podcast Alert: SANS Cyber Leaders Series Offers Strategic Tools for CISOs: The SANS Institute invites cybersecurity leaders and aspiring CISOs to subscribe to the Cyber Leaders Podcast. The premiere episodes offer strategic tools for CISOs, making it a must-listen for those in leadership roles in cybersecurity. Source: APN News
4. Fake CAPTCHAs, Harmageddon, and Krispy Kreme | Smashing Security podcast: This episode discusses the issues of fake CAPTCHAs and the Harmageddon exploit, providing listeners with an understanding of these cybersecurity threats. The podcast may contain adult themes and rude language. Source: YouTube
5. Hacking allegations and antitrust heat. - CyberWire: The CyberWire Daily Podcast discusses the latest in hacking allegations and the increasing scrutiny of antitrust laws in the tech industry. The episode provides a comprehensive overview of the current cybersecurity landscape. Source: CyberWire

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We've covered everything from urgent mobile security alerts to the latest vulnerabilities and patches. Remember, staying informed is your first line of defense in the ever-evolving world of cybersecurity. We hope you found this information valuable and encourage you to share this newsletter with your friends and colleagues. After all, cybersecurity is a shared responsibility. Let's work together to keep our digital world safe and secure. Stay tuned for tomorrow's edition where we'll bring you more updates from the world of cybersecurity. Until then, stay safe and stay vigilant!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)