Welcome to the ONSEC Cyber Daily for April 10th, where we bring you the latest news in the world of cybersecurity. Today, we're focusing on a wave of vulnerabilities and patches that are making headlines. China is pushing surveillance via Android apps, raising concerns about privacy and security. Meanwhile, WhatsApp users are urged not to ignore a new warning about a critical bug that could leave them vulnerable to cyberattacks. Microsoft has been busy patching 125 Windows vulnerabilities, while the Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert about a critical vulnerability in Gladinet CentreStack. In other news, a new Russia-linked cyberespionage campaign is abusing Windows RDP, and the UK's National Cyber Security Centre (NCSC) is warning about sophisticated spyware attacking mobile devices worldwide. On the patching front, Microsoft has addressed a zero-day flaw exploited by cybercriminals, and Adobe has released security updates to fix multiple vulnerabilities. Stay tuned for more details on these stories and more in today's issue of ONSEC Cyber Daily. Stay safe and informed!

Exploits Alert

1. China's Surveillance Push via Android Apps: International government cybersecurity agencies have released a technical analysis and mitigations against spyware found in Android apps linked to China's surveillance push. Source: Australian Cyber Security Magazine
2. WhatsApp Critical Bug Alert: Meta, WhatsApp's owner, has issued an alert regarding several recent and older versions of the app that could leave users vulnerable to cyber attacks. Source: Express
3. Active Exploitation of CentreStack Hard-Coded Key Vulnerability: The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert highlighting a critical vulnerability in Gladinet CentreStack, a popular cloud storage platform. Source: GBHackers
4. Weaponized LLMs Escalating Cybersecurity Risks: A new report highlights the escalating cybersecurity risks posed by weaponized Limited Liability Machines (LLMs). Source: SC Media
5. Active Attacks on CrushFTP Vulnerability: Cybersecurity authorities and incident response teams are warning organisations to urgently patch a critical vulnerability in CrushFTP, a popular file transfer protocol. Source: Teiss

Vulnerabilities & Patches

1. PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware: The PipeMagic Trojan is exploiting a zero-day vulnerability in Windows to deploy ransomware. Microsoft is actively tracking the post-compromise exploitation of this vulnerability, known as CVE-2025-29824. Source: The Hacker News
2. CrushFTP Exploitation Continues Amid Disclosure Dispute: Despite a patch release, the exploitation of CrushFTP continues. The patch was not assigned a CVE at the time of release, leading to ongoing issues. Source: Dark Reading
3. WhatsApp Discovers Rare Software Bug: WhatsApp has discovered a rare software bug that can be exploited to activate malware on Windows computers. The bug, tagged as CVE-2025-30401, has been patched. Source: TechNave
4. PostgreSQL SQL Injection Vulnerability: A SQL injection vulnerability, CVE-2025-1094, has been identified in PostgreSQL. The product vendor has already released patch versions addressing this vulnerability. Source: Broadcom Inc.
5. Google's Delayed Android Security Update Leaves Millions Exposed: A flaw in Google's Android, tagged as CVE-2024-53197, has left millions exposed to hackers. The flaw was uncovered by Amnesty International and Benoît Sevens from Google's own Threat Analysis. Source: MSN

Podcasts

1. Smashing Security podcast #412: Signalgate sucks, and the quandary of quishing: This episode discusses the recent Signalgate scandal and the dilemma of quishing. The hosts, Graham Cluley and Carole Theriault, provide an in-depth analysis of these cybersecurity issues. Source: grahamcluley.com
2. Ahead of the Threat Podcast: Episode Nine: This episode features the assistant director of the FBI Cyber Division and an FBI strategic engagement advisor discussing the current cyber threats and how to stay ahead of them. Source: youtube.com
3. Rep. Mike Rogers Discusses National Security and Alabama's Strategic Role on Auburn's “Cyber Focus” Podcast: In this episode, Rep. Mike Rogers discusses national security and Alabama's strategic role in cybersecurity. Source: calhounjournal.com
4. Cyber to Space: Raytheon's Vision for Total Global Security: This episode features Julian Zottl from Raytheon Cyber Protection Solutions discussing their vision for total global security, from cyber to space. Source: tomorrowsworldtoday.com
5. The Healthcare Cybersecurity Ecosystem: A System in Need of Comprehensive Care: This episode discusses the current state of cybersecurity in the healthcare sector and the need for comprehensive care. Source: healthcareittoday.com

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. From China's surveillance push via Android apps to the critical bug in WhatsApp, we've covered a lot of ground. Remember, staying informed is your first line of defense in this ever-evolving cyber landscape. If you found today's newsletter helpful, why not share it with your friends and colleagues? They might appreciate the heads up on these latest vulnerabilities and security updates. Stay safe, stay secure, and keep an eye out for tomorrow's edition of ONSEC Cyber Daily. Until then, remember - the only secure computer is one that's unplugged, locked in a safe, and buried 20 feet under the ground. And even then, I'd check on it from time to time. Stay vigilant, folks!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)