Cyber Daily 12/27: CDK Cyberattack Disrupts Supply Chain, FICORA & Kaiten Botnets Exploit D-Link, Apache & Palo Alto Patch Critical Vulnerabilities

Cyber Daily 12/27: CDK Cyberattack Disrupts Supply Chain, FICORA & Kaiten Botnets Exploit D-Link, Apache & Palo Alto Patch Critical Vulnerabilities

Good morning ONSEC Cyber Daily readers! Today, we're diving into the future of supply chain resilience and physical security, taking lessons from the past year's cyber incidents, including the CDK cyberattack that disrupted North American car supply chains. We're also looking at the recent surge in malicious activity exploiting old D-Link vulnerabilities by FICORA and Kaiten Botnets. As cybercrime continues to be a full-time job for cybercriminals, we'll explore six proactive measures that can help limit these threats. In the world of software, Apache and Palo Alto Networks are urging immediate action to patch critical security gaps in their systems. We'll discuss the major vulnerabilities identified and the potential impacts if left unpatched. In the financial sector, we'll examine the implications of Rye Patch Gold's share price crossing above the fifty-day moving average. We'll also cover the latest updates from Apache and Palo Alto, including patches for PAN-OS DoS Flaw and Apache MINA's maximum severity vulnerability. Finally, we'll catch up on the latest cybersecurity news from the media, including Microsoft's deactivation flaw and BeyondTrust's take on KEV. We'll also delve into the rising concerns about cybersecurity in the farming industry and the visionary founder of ParametricArchitecture's take on mastering cybersecurity and risk. Stay tuned for these stories and more in today's issue of ONSEC Cyber Daily. Stay safe and informed!

Exploits Alert

  1. Supply Chain Resilience and Physical Security: Lessons for 2025: The software supply chain has been under attack, as demonstrated by the CDK cyberattack that crippled North American car operations. The incident underscores the need for robust supply chain resilience and physical security measures to mitigate such threats. Source: The Cyber Express
  2. FICORA and Kaiten Botnets Exploit Old D-Link Vulnerabilities for Global Attacks: Cybersecurity researchers have warned about a surge in malicious activity involving vulnerable D-Link routers. The routers are being exploited by FICORA and Kaiten botnets for global attacks, highlighting the need for regular software updates and patching of old vulnerabilities. Source: The Hacker News
  3. Proactive Measures Can Limit Cyber Threats: Cybercrime is a full-time job for cybercriminals, and the astronomical toll it takes on businesses can be mitigated by implementing proactive measures. This commentary provides six such measures to prevent cyber incidents, emphasizing the importance of a proactive rather than reactive approach to cybersecurity. Source: New England Biz Law Update

Vulnerabilities & Patches

  1. Apache Urges Immediate Action to Patch Critical Security Gaps: A significant vulnerability, CVE-2024-52046, has been discovered in Apache MINA, a framework used for developing scalable network applications. The Apache Software Foundation has released patches to address this maximum severity vulnerability. Immediate action is recommended. Source: Tech Monitor and The Hacker News
  2. Palo Alto Networks Firewall Vulnerability CVE-2024-3393 Exploited in the Wild: Organizations using Palo Alto firewalls are advised to apply patches immediately to secure their systems. The critical PAN-OS flaw, CVE-2024-3393, allows unauthenticated DoS attacks. Source: Cybersecurity News and The Hacker News
  3. Rye Patch Gold CVE:RPM Share Price Crosses Above Fifty Day Moving Average: This is not a security vulnerability but a financial update about Rye Patch Gold. No action required. Source: Defense World
  4. Apache Fixed a Critical SQL Injection in Apache Traffic Control: The Apache Software Foundation has released security updates to address a critical security vulnerability, tracked as CVE-2024-45387. The vulnerability is a critical SQL Injection in Apache Traffic Control. Immediate patching is advised. Source: IT Security News
  5. Apache Software Foundation Releases Update Addressing CVE: The Apache Software Foundation has released an update addressing a CVE. While Ruijie Networks has issued patches, the scale of impact is yet to be determined. Source: Bob's Newsletter - Substack

Podcasts

  1. Week in Review: Microsoft deactivation flaw, BeyondTrust on KEV - CISO Series: This podcast episode revisits a story covered last week about a Microsoft deactivation flaw and BeyondTrust on KEV. The discussion also includes the issue of LLM-generated malware. Source: CISO Series.
  2. Ready for the next cyberattack on your farm? - FP Next: This episode of the Farm Progress podcast, powered by John Deere, addresses farmer questions about cybersecurity. It provides a deep dive into the potential cyber threats faced by the farming industry. Source: Farm Progress.
  3. From toilet to Twitter: the rise of ParametricArchitecture - Interesting Engineering: This podcast episode features Hamid Hassanzadeh, the founder of ParametricArchitecture. The discussion revolves around cybersecurity and risk in the context of the rise of ParametricArchitecture. Source: Interesting Engineering.

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We've journeyed through the landscape of supply chain resilience, explored the world of botnets and vulnerabilities, and delved into the importance of proactive measures against cyber threats. We've also highlighted the urgency of patching critical security gaps and keeping abreast of the latest updates. Remember, the world of cybersecurity is ever-evolving and staying informed is your first line of defense. Share this newsletter with your friends and colleagues to keep them in the loop too. Let's continue to learn, adapt, and secure our digital world together. Stay safe, stay updated, and see you in the next edition of ONSEC Cyber Daily.

x.com
ONSEC.io | LinkedIn
ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.