Welcome to the ONSEC Cyber Daily, your one-stop source for the latest in cybersecurity news. Today, we're diving into a global warning from the FBI and CISA about the Ghost ransomware threats that are haunting the cyber world. We'll explore how these cyber specters are exploiting vulnerabilities and what you can do to protect your data. In other news, Microsoft Power Pages are under attack, with vulnerabilities being exploited in the wild. We'll discuss the personal toll these cyberattacks are taking on cybersecurity professionals and what's being done to combat them. We'll also delve into the Oracle Agile vulnerability that CISA has flagged as being actively exploited, and a zero-day bug causing havoc in Parallels Desktop for Mac. Plus, we'll cover the latest security warnings from the FBI on ransomware attacks targeting mobile devices and the attempts by hackers to exploit a file read flaw in firewalls. In the world of patches and updates, we'll look at the Essential Addons for Elementor XSS vulnerability, the PoC exploit for Ivanti Endpoint Manager vulnerabilities, and the latest Wireshark update that fixes a vulnerability triggering DoS attacks. Finally, we'll round up with a selection of the latest cybersecurity podcasts, discussing everything from the future of business communications and the SOC of tomorrow, to improving your cyber readiness and achieving financial freedom through risk management. Stay tuned for these stories and more in today's ONSEC Cyber Daily. Stay safe, stay informed.

Exploits Alert

1. FBI & CISA warn of Ghost ransomware threats worldwide: The FBI and CISA have issued a joint advisory warning of malicious cyber activities worldwide. They emphasized the importance of vulnerability management practices to mitigate these threats. Source: SecurityBrief Australia.
2. FBI issues cyberattack warning: How to protect your data from 'ghosts': The FBI has issued a warning about cyberattacks, specifically those involving 'ghosts'. The alert emphasizes addressing known vulnerabilities to protect data. Source: MassLive.com.
3. Microsoft Power Pages vulnerability exploited in the wild: A vulnerability in Microsoft Power Pages is being exploited in the wild. Cybersecurity professionals are urged to take measures to protect against this threat. Source: Cybersecurity Dive.
4. FBI's Ghost Cyber Warning: All You Need to Know: The FBI has issued a warning about Ghost cyber attacks. The preferred tool of these attacks is the Cobalt Strike Beacon, a common implant from commercial penetration testing often used by cybercriminals. Source: Cyber Magazine.

Vulnerabilities & Patches

1. CISA Alerts: Oracle Agile Vulnerability Actively Exploited: The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about an actively exploited severe deserialization vulnerability (CVE-2024-20953) in Oracle Agile Product. Users are advised to patch their systems immediately. Source: GBHackers
2. Zero-Day Bug in Parallels Desktop for Mac: A patch bypass bug has been discovered in the popular desktop emulator, Parallels Desktop for Mac. The bug enables root-level privilege escalation and currently has no fix. Source: Dark Reading
3. FBI Warns of Ransomware Attack Targeting Mobile Devices: The FBI has issued a security warning about a ransomware attack that targets mobile devices. Users are urged to keep their devices updated with the latest security patches. Source: MSN
4. Palo Alto Networks Warns of File Read Flaw Exploitation: Threat actors are attempting to exploit a file read flaw in Palo Alto Networks' firewalls. The company advises users to patch all identified vulnerabilities. Source: Cybersecurity Dive
5. XSS Vulnerability Discovered in Essential Addons for Elementor: A Cross-Site Scripting (XSS) vulnerability (CVE-2025-24752) has been discovered in the Essential Addons for Elementor plugin. The issue has been resolved by the WPDeveloper. Source: Infosecurity Magazine

Podcasts

1. APDR Podcast Episode 82 with host Kym Bergmann - Asia Pacific Defence Reporter: This episode discusses two major events that have negatively impacted Australia's security outlook, including the US's handling of the situation in Ukraine. Source: Asia Pacific Defence Reporter.
2. ROLM Returns: AI, Cybersecurity, and the Future of Business Communications, Podcast: This podcast episode explores the role of AI in cybersecurity and the future of business communications. Source: Telecom Reseller.
3. TechSpective Podcast Episode 148: This episode discusses the evolution of Security Information and Event and the rise of predictive security through AI-powered models. Source: TechSpective.
4. Cyber Risk | Episode 2 | Improve your cyber readiness – Tabletop exercises - Clyde & Co: In this episode, Helen Bourne and Georgia Schulberg discuss how organizations can improve their cyber readiness through tabletop exercises. Source: Clyde & Co.
5. SwineTime Podcast: Episode #73 – Financial Freedom Through Risk Management: This episode features a discussion with Damon Vander Maten, Director of FarmBooks, on achieving financial freedom through risk management. Source: SwineWeb.

Final Words

And that's a wrap for today's edition of 'ONSEC Cyber Daily'. As we navigate the digital world, let's remember that knowledge is power. The more we know about these cyber threats, the better we can protect ourselves and our organizations. Remember, the Ghost ransomware is lurking, and the FBI and CISA are urging us all to stay vigilant. Microsoft Power Pages vulnerabilities are being exploited, and Oracle Agile is under attack. Mac users, keep an eye out for that pesky zero-day bug in Parallels Desktop. And don't forget to update your devices to protect against ransomware attacks targeting mobile devices. In the podcast world, we've got some great episodes lined up for you. From exploring the future of business communications with AI and cybersecurity to understanding the SOC of tomorrow, there's a lot to learn. We hope you found today's newsletter informative and engaging. If you did, why not share it with your friends and colleagues? Let's spread the word and help each other stay one step ahead of the cyber threats. Stay safe, stay informed, and see you in the next edition of 'ONSEC Cyber Daily'.

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)