Welcome to the ONSEC Cyber Daily for April 2nd! Today, we're diving into a whirlwind of cybersecurity updates and alerts. We start with Cowbell's expansion of its cybersecurity platform, integrating vulnerability scanners from Tenable, Qualys, and Rapid7. This move is a significant step towards strengthening cyber defenses and reducing risks. Next, we turn our attention to the recent ransomware attack on a Malaysian airport, a stark reminder of the vulnerabilities in transportation facilities and networks. The incident underscores the need for these sectors to adapt quickly to emerging threats. In other news, Kentico Xperience CMS has been hit with an XSS vulnerability, allowing attackers to execute remote code. This incident highlights the importance of maintaining up-to-date security measures and staying alert to potential threats. Apple has also been in the spotlight, issuing warnings on three 0-day vulnerabilities under active exploitation. The tech giant has responded swiftly, releasing updates to mitigate these risks. But it's a clear reminder of the growing sophistication of cyberattacks. We also cover a slew of CVE vulnerabilities, from Cisco's Smart Licensing Utility to Apple's older OS versions and Canon's printer drivers. Each of these instances emphasizes the critical importance of timely patch management and secure coding practices. Finally, we wrap up with a roundup of the latest cybersecurity podcasts. From navigating cyber slang and emojis to exploring the future of ransomware, these episodes offer valuable insights into the ever-evolving world of cybersecurity. Stay tuned for more updates and remember, staying informed is the first step towards staying secure.

Exploits Alert

1. Cowbell Expands Integrations in Its Cybersecurity Platform: Cowbell Cyber has expanded its cybersecurity platform to include vulnerability scanners from Tenable, Qualys, and Rapid7. This move is aimed at enhancing the platform's ability to detect and respond to cyber threats. Source: MSSP Alert
2. Malaysian Airport's Ransomware Attack a Warning for Asia: The recent ransomware attack on a Malaysian airport serves as a stark reminder of the vulnerability of transportation facilities and networks to cyberattacks. The slow adaptation to changes and threats leaves these facilities exposed to agile cyberattackers. Source: Dark Reading
3. Kentico Xperience CMS XSS Vulnerability Let Attackers Execute Remote Code: A cross-site scripting (XSS) vulnerability in Kentico Xperience CMS allows attackers to execute remote code. The successful exploitation of this vulnerability is confirmed by an alert box displaying "XSS Exploited". Source: Cyber Security News
4. Apple Issues Warning on Three 0-Day Vulnerabilities Under Active Exploitation: Apple has issued a warning about three zero-day vulnerabilities currently under active exploitation. These vulnerabilities highlight the growing sophistication of cyberattacks targeting Apple products. Source: GBHackers
5. iOS 18.4—Update Now Warning Issued To All iPhone Users: Apple has released iOS 18.4, fixing a list of 62 iPhone security vulnerabilities, some of which are serious. All iPhone users are advised to update their devices immediately. Source: Forbes

Vulnerabilities & Patches

1. Apple belatedly fixes exploited flaws in older OSes: Apple has released an update to macOS Ventura, addressing CVE-2025-24085, a privilege escalation vulnerability in CoreMedia. Users are advised to update their systems to mitigate the risk. Source: The Register
2. Cisco Smart Licensing Utility Vulnerabilities: Cisco has addressed vulnerabilities CVE-2024-20439 and CVE-2024-20440 in its Smart Licensing Utility with software updates. No workarounds are available, making the updates essential for security. Source: Systemtek
3. Microsoft addresses CVE-2025-24993: Microsoft has patched CVE-2025-24993 in its March 2025 Patch Tuesday update. Users are urged to apply the updates immediately to mitigate the risk. Source: Security Boulevard
4. Repaired security patch closes malicious code gap in IBM App Connect: IBM has patched a critical security vulnerability (CVE-2025-1302) in the jsonpath-plus module for processing JSON configurations in IBM App Connect. Source: Heise
5. Canon Printer Vulnerability CVE-2025-1268: Canon has issued a security alert for CVE-2025-1268, a vulnerability affecting printer drivers. Users are advised to update to the latest drivers to protect against potential risks. Source: The Cyber Express

Podcasts

1. APDR Podcast Episode 87 with host Kym Bergmann: This episode discusses various aspects of cyber security, IT, simulation & training, and government policy & news. Source: APDR Podcast Episode 87
2. LAVO Hydrogen | Road to ZERO Podcast | Episode 60: The episode focuses on the use of AI to advance DoD's cyber capabilities. Source: LAVO Hydrogen | Road to ZERO Podcast | Episode 60
3. Navigating cyber slang, emojis and secret codes: Ensuring children's safety in the digital world: This podcast episode from SBS discusses the importance of understanding cyber slang, emojis, and secret codes to ensure children's safety online. Source: Navigating cyber slang, emojis and secret codes
4. Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 229: In this episode, hosts Heather and Matthew welcome Dr. Edward Simmer, the Interim Director of the South Carolina Department of Public Health. Source: Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 229
5. Ep.110 Ransomware in our age of Disorder with Jamie MacColl - RUSI: This episode discusses the impact of ransomware in our current age of disorder, featuring Jamie MacColl, a Senior Research Fellow in Cyber and Tech at RUSI. Source: Ep.110 Ransomware in our age of Disorder with Jamie MacColl - RUSI

Final Words

And that's a wrap for today's ONSEC Cyber Daily. We've covered everything from Cowbell's expanded integrations to the latest vulnerabilities and patches. Remember, in the world of cybersecurity, staying informed is your first line of defense. We hope you found today's newsletter informative and engaging. If you did, don't keep it to yourself. Share it with your friends, colleagues, and anyone else who might benefit from staying up-to-date on the latest in cybersecurity news. In the meantime, stay safe, stay vigilant, and keep an eye out for tomorrow's edition of ONSEC Cyber Daily. Until then, remember: the only secure system is one that's unplugged, locked in a safe, and buried 20 feet under the ground. And even then, I wouldn't bet on it. Stay cyber smart!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)