Season’s Greetings, ONSEC Cyber Daily readers! As we gear up for the upcoming Christmas festivities, we hope you’re staying merry and vigilant in the ever-evolving world of cybersecurity. Today, we’re diving into a flurry of updates that have been making headlines: The National Cyber Emergency Response Team (PKCERT) has issued a warning about a security vulnerability in Microsoft’s Windows, while cybercriminals are reportedly building huge databases of personal information for future fraudulent schemes. Sophos Firewall vulnerabilities have been detailed, urging users to patch immediately, and Microsoft swiftly addressed a flaw in its cloud computing platform after receiving a crucial warning. We’ll also discuss the growing sophistication of cyberattacks and the pressing need for enhanced threat detection, examine a security flaw flagged by Sophos, and explore the implications of unmasking NRIC numbers. Finally, be sure to catch our latest podcast episodes, covering everything from digital license plate vulnerabilities to the rise of quantum computing. Stay tuned for these stories and more in today’s issue of ONSEC Cyber Daily, and here’s wishing you a safe, informed, and joyous start to the holiday season—Merry Christmas in advance! Stay secure and celebrate responsibly.

Exploits Alert

1. PKCERT Issues Advisory on Windows Security Vulnerability: The National Cyber Emergency Response Team (PKCERT) has issued an advisory warning about a security vulnerability in Microsoft's Windows. Users are advised to update their systems to the latest version to mitigate the risk. Source: ARY News.
2. Scams Unwrapped: Cybersecurity Experts Issue Warning: Cybersecurity experts warn that cybercriminals are building massive databases of personal information to fuel future fraudulent schemes. It's crucial to stay vigilant and protect personal information. Source: CIO Africa.
3. Sophos Firewall Vulnerabilities Explained: A detailed explanation of the vulnerabilities in Sophos Firewall has been published. Users are advised to ensure their firewall is updated to the latest version to avoid potential breaches. Source: Information Security Newspaper.
4. Microsoft Fixes Cloud Platform Vulnerability After Warning: Microsoft has fixed a flaw in its cloud computing platform following a warning from cybersecurity researchers. The flaw could have enabled cyberattacks, highlighting the importance of regular system updates. Source: WEYI.
5. Weekly Cybersecurity Newsletter: Cyber Attack News, Vulnerabilities & Data Breaches: This weekly recap highlights the growing sophistication of cyberattacks and the need for enhanced threat detection mechanisms. Stay informed to stay safe. Source: Cybersecurity News.

Vulnerabilities & Patches

1. Sophos Firewall Security Flaws: Sophos has identified significant security flaws in its firewall, urging users to patch their systems immediately. The patching process varies depending on the specific vulnerability, with CVE-2024-12727 requiring users to navigate to Device Management and then to Advanced. Source: TechRadar.
2. MacOS Login Window Bypass: A vulnerability has been identified that allows a person with physical access to a Mac to bypass the Login Window during a software update. The vulnerability, CVE-2024-44231, has been rated a 7.5 on the severity scale. Source: CISA.
3. Cloud Atlas Exploits CVE-2024-30051: The Cloud Atlas threat group has been seen exploiting the CVE-2024-30051 vulnerability, which was patched by Microsoft in May. The group has been using the vulnerability to deploy QuakBot and other malware. Source: IT Security News.

Podcasts

1. 2024 Healthcare IT Year in Review – Healthcare IT Today Podcast Episode 156: This episode, sponsored by Pure Storage, provides a comprehensive review of the major healthcare IT developments in 2024. It offers insights into the evolving landscape of healthcare technology. Source: Healthcare IT Today
2. Nota Bene Episode 172: The Next Four Years In National Security Policy With Jonathan Meyer Of Sheppard Mullin: This podcast episode discusses the future of national security policy over the next four years with Jonathan Meyer of Sheppard Mullin. It provides a deep dive into the strategic planning and challenges ahead. Source: Mondaq
3. FlowerStorms hits Microsoft 365, BeyondTrust on KEV - CISO Series: This episode discusses the recent FlowerStorm cyber attack on Microsoft 365 and BeyondTrust's response. It provides a detailed analysis of the attack and its implications. Source: CISO Series
4. What are the implications of unmasking NRIC numbers? | Deep Dive podcast: This episode explores the potential consequences of unmasking NRIC numbers. It features a conversation with Steve Tan, deputy head of cybersecurity, discussing the risks and mitigation strategies. Source: YouTube
5. Digital License Plate Vulnerabilities, How to Avoid New Text Message Scams - iVoox: This episode discusses the vulnerabilities of digital license plates and provides tips on how to avoid new text message scams. It offers practical advice for enhancing personal cybersecurity. Source: iVoox

Final Words

And that’s a wrap for today’s edition of ONSEC Cyber Daily. From the latest warnings on Windows security vulnerabilities to the concerning firewall flaws flagged by Sophos, we’ve covered the most pressing cybersecurity news of the day. Remember, staying informed is the first step towards protecting yourself and your organization from cyber threats, so don’t forget to patch your systems, update your software, and always stay vigilant against potential scams. If you found today’s newsletter helpful, please consider sharing it with your friends and colleagues—we can all work together to create a safer digital world. Stay safe, stay informed, and see you in the next edition of ONSEC Cyber Daily.

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)