Welcome to your daily dose of cybersecurity insights from ONSEC Cyber Daily. Today, we're diving into the realm of cybersecurity predictions for 2025, where hype battles reality. We'll explore how common practices like visual validation are becoming increasingly vulnerable, particularly in finance and cryptocurrency markets. We'll also discuss the recent alerts and warnings about cyberattacks exploiting vulnerabilities in SimpleHelp RMM software and the urgent warnings issued by Google about the escalating threat landscape. In healthcare, we're facing a crisis as the FDA confirms cybersecurity vulnerabilities in Contec patient monitors, highlighting the critical importance of cybersecurity in the sector. We'll also touch on the latest updates from MSSP Alert, including the rapid rise in API vulnerabilities fueled by GenAI and the exploitation of SimpleHelp RMM by threat actors. In the UK, the National Audit Office has issued a stark warning about the government's vulnerability to cyber threats, and we'll delve into Oracle's release of 318 security updates this January. Finally, we'll round up with some interesting podcast episodes about passkey technology, the story of an anonymous cyber-stalker, and the state of the horticulture industry. Stay tuned for these stories and more in today's ONSEC Cyber Daily. Stay safe and informed!

Exploits Alert

Jailbreaking Generative AI - API Security

DeepSeek, a disruptive new AI model from China, has shaken the market, sparking both excitement and controversy. While it has gained attention for its

WallarmIvan Novikov

1. DeepSeek Jailbreak and System Prompt Revealed: Wallarm security research team revealed a novel jailbreak technique used to exploit the DeepSeek API, extracting the full system prompt and uncovering details about OpenAI's involvement in DeepSeek's training: https://lab.wallarm.com/jailbreaking-generative-ai/
2. Cyber Attacks Exploit Vulnerabilities in SimpleHelp RMM Software: Recent investigations have revealed that hackers are exploiting vulnerabilities in the remote management software, SimpleHelp RMM. This exploit has led to a significant increase in cyber attacks. Source: The Munich Eye.
3. Google Issues Urgent Warning Over Cybersecurity Threats: Google has issued an urgent warning about the increasing number of cyberattacks, which are being exacerbated by AI technologies. The company is urging users to take immediate action to protect their data. Source: Evrim Ağacı.
4. Security Update: GenAI Fueling Rapid Rise in API Vulnerabilities: A new security update has revealed that GenAI is causing a rapid increase in API vulnerabilities. This rise in vulnerabilities has led to a surge in ransomware attacks. Source: ChannelE2E.
5. CISA, FDA warn of vulnerabilities in Contec patient monitors: The Cybersecurity and Infrastructure Security Agency and FBI have released an advisory warning of vulnerabilities in Contec patient monitors. These vulnerabilities could potentially be exploited by cyberthreat actors. Source: AHA News.

Vulnerabilities & Patches

1. Threat Actors Exploiting SimpleHelp RMM: Three vulnerabilities, identified as CVE-2024-57726, CVE-2024-57727, and CVE-2024-57728, have been discovered in SimpleHelp RMM. These flaws allow threat actors to transfer files and execute commands remotely. Users are urged to apply patches immediately. Source: MSSP Alert.
2. Apple Devices Security Update: Apple has addressed a critical security issue, CVE-2025-24131, with improved memory handling. The patch is available for iOS 18.3 and iPadOS. Users are strongly advised to update their devices this weekend. Source: Macworld.
3. Critical Vulnerabilities in CMS8000 Patient Monitor: Critical zero-day vulnerabilities have been found in the CMS8000 Patient Monitor. A patch is now available and organizations are encouraged to apply it as soon as possible. Source: The Cyber Express.
4. Oracle's Security Updates: Oracle has released 318 security updates this January, including a patch for the CVE-2024-21287 vulnerability in Oracle Agile Product Lifecycle. Users are advised to apply these updates promptly. Source: B2B Cyber Security.
5. Broadcom Patches VMware Aria Flaws: Broadcom has released security updates to patch five security flaws, including CVE-2025-22218 with a CVSS score of 8.5. These vulnerabilities could potentially lead to credential theft. Users are recommended to apply these patches immediately. Source: IT Security News.

Podcasts

1. Thales Security Sessions: The Stealthy Success of Passkeys: This podcast episode discusses the increasing importance of passkey technology in enhancing security. It features Andrew, a security expert, who shares insights on how passkeys can help resist phishing attacks. Source: Security Boulevard.
2. New True Crime: Story of Anonymous Cyber-Stalker: This new true crime podcast delves into the world of online deception, exploring the emotional impact of living in fear and the lengths one woman goes to reclaim her life from an anonymous cyber-stalker. Source: Podcasting Today.
3. The Growth Industry Episode 1: State of the Horticulture Industry: The first episode of The Growth Industry podcast from GIE Media discusses the state of the horticulture industry, including the importance of cybersecurity in protecting operations. Source: Nursery Management.
4. CISO Series: Blood Center Cyberattack, DeepSeek Leak, CISA's Future Unclear: This episode of the CISO Series podcast covers a range of cybersecurity news, including a cyberattack on a blood center, a data leak from DeepSeek, and the uncertain future of the Cybersecurity and Infrastructure Security Agency (CISA). Source: CISO Series.

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, we hope you've found our insights on the latest cybersecurity threats and predictions valuable. The landscape of cyber threats is ever-evolving, and staying informed is our first line of defense. From the vulnerabilities in SimpleHelp RMM software to the urgent warnings issued by Google, the FDA, and the NAO, it's clear that no sector is immune. Whether it's finance, healthcare, or government, cybersecurity is a critical concern that requires our constant vigilance. Remember, the fight against cyber threats is not a solo mission. It's a collective effort. So, don't keep these insights to yourself. Share this newsletter with your friends, colleagues, and anyone else who could benefit from staying a step ahead of cyber threats. And while you're at it, why not recommend they subscribe to ONSEC Cyber Daily? It's a simple way to ensure they're always in the loop on the latest cybersecurity news. Stay safe, stay informed, and let's continue to navigate the complex world of cybersecurity together. Until next time!