Welcome to today's issue of ONSEC Cyber Daily. In this edition, we delve into the latest updates from cybersecurity agencies who are ramping up their 'Secure by Design' alerts to counteract emerging threats. We'll also discuss the recent warning issued by the FBI urging iPhone and Android users to be cautious about their text communications due to a recent Chinese cyberattack. In other news, we explore the vulnerabilities that have been identified in Windows 7 to 11, with no official fix yet in sight. We'll also take a look at the alarming warning issued by the FBI about the vulnerability of text message data following a cybersecurity hack. We'll also touch on the recent cyberattacks attributed to the persistent threat actor codenamed “Salt Typhoon,” linked to China's Ministry of Public Security. In addition, we'll discuss the latest vulnerabilities actively exploited in CyberPanel, North Grid, ProjectSend, and Zyxel Firewalls, and the urgent call from CISA to patch these immediately. Lastly, we'll explore the burnout faced by SOC analysts due to intense workloads and how AI can help them focus on high-value tasks. Stay tuned for all this and more in today's issue of ONSEC Cyber Daily.

Exploits Alert

1. Cybersecurity agencies update 'Secure by Design' alert: Cybersecurity agencies have updated their 'Secure by Design' alert to counter threats and select secure and verifiable technologies. The update includes complete, straightforward guidance on how customers can patch or mitigate identified vulnerabilities. Source: Industrial Cyber
2. New Windows 7 To 11 Warning As Zero-Day With No Official Fix Strikes: A new zero-day vulnerability affecting Windows 7 to 11 has been identified, with no official fix currently available. Users are advised to be cautious, as the vulnerability can be exploited just by opening a shared file. Source: Forbes
3. FBI warning for iPhone and Android users: The FBI has issued a warning to iPhone and Android users to be cautious when texting each other without encryption, following a recent Chinese cyberattack. The attack has potentially exposed private communications to foreign hackers. Source: Newsweek
4. Warning issued for 10-year-old vulnerability: A warning has been issued for a 10-year-old vulnerability, highlighting the risks of technical debt and low cybersecurity maturity. Security leaders are discussing the issue and advising on mitigation strategies. Source: Security Magazine
5. CISA Warns Of CyberPanel, North Grid, ProjectSend & Zyxel Firewalls Flaws Exploited In Wild: CISA has issued a warning about vulnerabilities in CyberPanel, North Grid, ProjectSend, and Zyxel Firewalls that are being exploited in the wild. One such vulnerability in CyberPanel allows attackers to bypass authentication and execute commands. Source: Cybersecurity News

Vulnerabilities & Patches

1. SonicWall Patches 6 Vulnerabilities in Secure Access Gateway: SonicWall has patched six vulnerabilities in its Secure Access Gateway, including CVE-2024-38475. Successful exploitation of these vulnerabilities requires authentication. Source: SecurityWeek
2. Hundred of CISCO switches impacted by bootloader flaw: A bootloader vulnerability in Cisco NX-OS affects over 100 switches, allowing attackers to bypass image signature checks. Source: Security Affairs
3. PoC exploit chains Mitel MiCollab 0-day, auth-bypass bug: A zero-day arbitrary file read vulnerability in Mitel MiCollab can be chained with a now-patched critical bug in the same platform to give unauthorized access. Source: The Register
4. Zyxel, ProjectSend, CyberPanel vulnerabilities actively exploited, so patch now: CISA has added more bugs to its KEV catalog, including a 10/10 haul. These vulnerabilities are actively being exploited and require immediate patching. Source: MSN
5. Veeam Urges Immediate Update to Patch Severe Vulnerabilities: Veeam has released security updates to address a critical flaw, CVE-2024-42448, with a CVSS score of 9.9. This remote code execution vulnerability on the VSPC server machine requires an immediate patch. Source: Infosecurity Magazine

Podcasts

1. Overcoming AI Risks, Workforce Challenges in Cybersecurity: This episode of The Future in Context podcast discusses the challenges and risks associated with AI in the cybersecurity field. It also highlights the importance of a well-trained workforce in mitigating these risks. Source: Governing Magazine
2. Dismantling the Manson Cybercrime Market: CyberWire's podcast episode focuses on the dismantling of the Manson cybercrime market. It features insights from the CISO at ISC2 and provides a deep dive into the world of cybercrime. Source: CyberWire
3. DBrief: Episode 10, December 2024: Ai Group's DBrief podcast discusses various topics related to cybersecurity, research, economics, and more. The latest episode provides valuable insights into the state of cybersecurity in December 2024. Source: Ai Group
4. From Brine to Battery: The Evolution of Lithium Extraction: This Interesting Engineering podcast episode discusses the evolution of lithium extraction and its implications for cybersecurity, risk, and compliance. Source: Interesting Engineering
5. Podcast: What is the Outlook for Tech Jobs in 2025?: Computerworld's podcast episode explores the future of tech jobs in 2025, with a focus on the protection of utilities from cyberattacks. Source: Computerworld

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We hope you found these updates enlightening and helpful in staying ahead of the curve in the ever-evolving landscape of cybersecurity. Remember, the first step in defense is awareness. As we navigate through the digital world, let's not forget the importance of sharing knowledge. If you found this newsletter beneficial, please consider forwarding it to your friends and colleagues. Together, we can build a safer cyber community. Stay vigilant, stay informed, and stay secure. See you in the next edition of ONSEC Cyber Daily.