Welcome to your daily dose of ONSEC Cyber Daily! Today, we're diving into the world of cyber vulnerabilities and the steps being taken to combat them. SquareX's "Year of Browser Bugs" project is shining a light on critical cybersecurity blind spots, while Google launches an open-source OSV-Scanner to detect security vulnerabilities. In other news, CISA has added two known exploited vulnerabilities to its catalog, urging all organizations to prioritize their cybersecurity. Meanwhile, a critical AMI BMC vulnerability has exposed servers to disruption and takeover, and DeepSeek AI vulnerability raises major security concerns. Google Chrome users, beware! The Indian Computer Emergency Response Team has issued a high-security warning amid cyber threats. And for Linux users, a PoC exploit has been released for a use-after-free vulnerability in the Linux kernel. On the patching front, a critical Windows vulnerability that leaks NTLM hashes without user interaction has been patched in Microsoft's March 2025 Patch Tuesday update. Also, patches have been released for a new critical AMI BMC vulnerability and an Apache Tomcat RCE vulnerability. In the world of cyber insurance, insurers are preparing for a Black Swan event. And in our podcast corner, we're breaking down risks in cybersecurity, discussing the evolution of cyber insurance, and exploring the truth behind the use of polygraph tests in the criminal justice system. Stay tuned for more updates and remember, knowledge is the best defense against cyber threats. Stay safe, stay informed with ONSEC Cyber Daily.

Exploits Alert

1. SquareX's “Year of Browser Bugs” project exposes critical cybersecurity blind spots: SquareX has launched the Year of Browser Bugs (YOBB) project to highlight the vulnerabilities browsers are exposed to, aiming to increase awareness of these cyber threats. Source: Security Boulevard
2. CISA Adds Two Known Exploited Vulnerabilities to Catalog: The Cybersecurity and Infrastructure Security Agency (CISA) has added two more known exploited vulnerabilities to its catalog, urging all organizations to prioritize reducing their exposure to cyberattacks. Source: US-CERT CISA
3. Critical AMI BMC Vulnerability Exposes Servers to Disruption, Takeover: A critical vulnerability in AMI BMC has been discovered, which exposes servers to potential disruption and takeover. Source: SecurityWeek
4. DeepSeek AI Vulnerability Raises Major Security Concerns: A vulnerability in DeepSeek AI has been exploited to generate keyloggers and data theft tools, raising significant security concerns. Source: The420.in
5. Google Chrome users at risk! Govt issues high-security warning amid cyber threats: The Indian Computer Emergency Response Team (CERT-In) has issued a high-security warning for Google Chrome users due to identified cyber threats. Source: MSN

Vulnerabilities & Patches

1. Critical Windows Vulnerability Leaks NTLM Hashes Without User Interaction: A recently patched vulnerability in Microsoft's March 2025 Patch Tuesday update exploits Windows Explorer's automatic file processing mechanisms to leak NTLM hashes without user interaction. Users are advised to apply the patch immediately to prevent potential breaches. Source: Cyber Kendra
2. New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking: CVE-2024-54085 in AMI MegaRAC BMC allows remote control, malware deployment, and server damage. Patches were released on March 11, 2025, and users are urged to update their systems to protect against this critical vulnerability. Source: The Hacker News
3. Apache Tomcat RCE Vulnerability (CVE-2025-24813) Under Active Exploitation: Patch Now: CVE-2025-24813 is a Remote Code Execution vulnerability in Apache Tomcat that is currently under active exploitation. Users are strongly advised to apply the security patches for affected versions immediately. Source: SOCRADAR
4. PoC Exploit Released for Linux Kernel Use-After-Free Vulnerability: CVE-2024-36904 highlights the importance of timely patching and testing of Linux kernel vulnerabilities. As Linux distributions continue to update, users are encouraged to apply patches promptly to avoid potential exploits. Source: GBHackers

Podcasts

1. How cyber insurers are preparing for a Black Swan event - Insurance Post: This podcast discusses the evolution of cyber insurance in the face of unpredictable and severe black swan events. It provides insights into how insurers are adapting their strategies to mitigate these risks. Source: Insurance Post
2. Breaking Down Risks in Cybersecurity - Security Boulevard: The Cyber Crime Junkies podcast features a conversation with David Mauro, discussing the various risks in cybersecurity. The episode provides a comprehensive breakdown of these risks and how to manage them. Source: Security Boulevard
3. Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 227 - JD Supra: This episode features Arda Ural, the Americas Life Sciences Sector Leader for EY, discussing the intersection of healthcare, life sciences, and cybersecurity at SCbio's 2025 annual conference. Source: JD Supra
4. Tomcat got your server? - CyberWire: The CyberWire Daily Podcast discusses the potential cybersecurity threats associated with server management and provides insights into how to protect against them. Source: CyberWire
5. The AI Fix #42: AIs with anxiety, and why AIs don't know what happened - Graham Cluley: This episode of the Smashing Security podcast discusses the complexities of AI in cybersecurity, including the challenges and potential solutions. Source: Graham Cluley

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. From SquareX's eye-opening project to the latest vulnerabilities and patches, we've covered the most critical cybersecurity updates you need to know. Remember, staying informed is your first line of defense in this digital battlefield. If you found today's newsletter helpful, why not share it with your friends and colleagues? It's a simple way to help them stay safe and secure in the ever-evolving cyber landscape. Stay vigilant, stay informed, and let's fight cyber threats together. Until tomorrow, this is your trusted source for all things cybersecurity, signing off.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn