Welcome to your ONSEC Cyber Daily dose for April 29. Today, we're diving into the deep end of the cybersecurity pool. We kick off with a warning shot from JPMorgan Chase's CISO ahead of the RSA Conference, highlighting the increasing pressure on CISOs to stay ahead of evolving cyber threats. In the realm of unified security, Blackpoint Cyber's new CompassOne is making waves, while SOCRadar introduces Copilot, an AI-powered tool to streamline cybersecurity operations. Meanwhile, Ivanti VPNs are witnessing a major surge in scanning activity, and Aussie SMEs are grappling with digital threats, urging for clearer risk standards. The vulnerability landscape is buzzing with activity too. Critical flaws in Craft CMS have been exploited, breaching over 300 servers. The 2025 Verizon DBIR reveals that cyber attacks are increasingly driven by vulnerability exploitation, with VPNs and edge devices heavily targeted. In the AI sector, Agentic AI is enabling the next leap in cybersecurity, while NetRise launches ZeroLens for proactive vulnerability detection. CISA has issued critical security alerts regarding multiple severe vulnerabilities in Planet Technology Network Products. The SAP NetWeaver Visual Composer flaw is under active exploitation, with an emergency patch released to address the issue. WooCommerce users, beware of a fake patch phishing campaign deploying site backdoors. Finally, tune into the latest cybersecurity podcasts. APDR Podcast Episode 90 with host Kym Bergmann and ESW #404 with Jeff Shiner discuss the future of access management. And don't miss the urgent call to upskill workers on cybersecurity tools in retail and BFSI sectors, as revealed by a Nuvepro survey. Stay safe and informed with ONSEC Cyber Daily.

Exploits Alert

1. JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference: The CISO of JPMorgan Chase has issued a warning ahead of the RSA Conference, emphasizing the importance of cybersecurity. The details of the warning were not disclosed. Source: SecurityWeek
2. Blackpoint Cyber's New CompassOne Drives Unified Security Posture for MSSPs: Blackpoint Cyber has launched CompassOne, a new tool aimed at helping Managed Service Providers (MSPs) unify their security posture. The tool is expected to enhance the first line of defense against cyber threats. Source: MSSP Alert
3. SOC Radar Introduces Copilot to Streamline Cybersecurity Operations with AI: SOCRadar has introduced Copilot, an AI-powered tool designed to streamline cybersecurity operations. The tool offers features like vulnerability management, dark web monitoring, and supply chain analysis. Source: MSSP Alert
4. Ivanti VPNs See Major Surge in Scanning Activity: Ivanti VPNs have experienced a significant increase in scanning activity. The reason for the surge is not clear, but it underscores the importance of robust cybersecurity measures. Source: MSSP Alert
5. Cyberstorm Warning: Experts Urge Clearer Risk Standards as Aussie SMEs Drown in Digital Threats: Experts are calling for clearer risk standards as Australian small and medium-sized enterprises (SMEs) struggle with digital threats. The vulnerability of these businesses is being exacerbated by systemic issues. Source: Tech Business News

Vulnerabilities & Patches

1. SAP NetWeaver Visual Composer Flaw Under Active Exploitation: A critical vulnerability, CVE-2025-31324, in SAP NetWeaver Visual Composer is being actively exploited. The bug, rated 9.9 out of 10 on the CVSS scale, was targeted by attackers weeks before SAP could release a patch. Users are urged to apply the emergency updates immediately. Source: Dark Reading, Cybersecurity News, GBHackers, Security Boulevard, Help Net Security.
2. WooCommerce Users Targeted by Fake Patch Phishing Campaign: WooCommerce users are being targeted by a phishing campaign that deploys site backdoors. The attackers are using a CVE ploy to breach sites running the popular content management system (CMS). Users are advised to be vigilant of email lures and bogus web patches. Source: The Hacker News.

Podcasts

1. APDR Podcast Episode 90 with host Kym Bergmann: This episode of Asia Pacific Defence Reporter (APDR) podcast features a discussion on Cyber Security, IT, Simulation & Training, and Government Policy & News. Host Kym Bergmann provides an in-depth analysis of these topics. Source: APDR.
2. The Future of Access Management – Jeff Shiner – ESW #404: SC Media's podcast episode features Jeff Shiner discussing the future of access management. The episode covers topics like application security, endpoint/device security, and IAM technologies. Source: SC Media.
3. The Future of Access Management – Jeff Shiner – ESW #404: In this episode of Security Weekly, Jeff Shiner, CEO of 1Password, discusses the future of access management. The podcast provides valuable insights into the evolving landscape of cybersecurity. Source: SC Media.
4. MVP – The Master's Voice Podcast – EP 125 - Vinay Kumar Swamy on Pearson India: This episode of the Master's Voice Podcast features a conversation with Vinay Kumar Swamy on Pearson India. The discussion emphasizes the urgent need to upskill workers on cybersecurity tools in retail and BFSI sectors. Source: MediaBrief.

Final Words

As we wrap up today's edition of 'ONSEC Cyber Daily', we hope you found the information valuable in navigating the ever-evolving landscape of cybersecurity. From the warning shot fired by JPMorgan Chase's CISO, to the surge in scanning activity on Ivanti VPNs, and the critical vulnerabilities in SAP NetWeaver, it's clear that the cyber world is a battlefield that requires constant vigilance. We also explored the innovative solutions being introduced to streamline cybersecurity operations, like SOCRadar's Copilot and Blackpoint Cyber's CompassOne. And let's not forget the importance of upskilling workers on cybersecurity tools, a point underscored by the recent Nuvepro survey. Remember, knowledge is power. The more we know, the better equipped we are to defend against cyber threats. So, why not share this power with your friends and colleagues? Forward this newsletter to them and help build a more secure cyber community. Stay safe, stay informed, and see you in the next edition of 'ONSEC Cyber Daily'.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn