Welcome to the latest issue of ONSEC Cyber Daily. Today, we're diving into a series of critical alerts and warnings that have been issued across the cyber landscape. First up, WhatsApp users are being urged to update their settings to avoid falling victim to potential hacks. This warning comes from Adam Pilton, a senior cybersecurity expert at CyberSmart, who has stressed the severity of this vulnerability. Meanwhile, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued multiple warnings about vulnerabilities in popular platforms like Zoom, Ivanti, and Google's Android system. These vulnerabilities could allow malicious script injections and other cyber threats, highlighting the need for immediate action. In other news, a new wave of ToddyCat attacks is exploiting a vulnerability in ESET software, and South African banking customers are being warned about the risks of EFT cyberattacks. On the patching front, Adobe, Apache Foundation, and Microsoft have all released critical patches to address various vulnerabilities. Microsoft's April 2025 Patch Tuesday, in particular, addressed a whopping 121 CVEs, including an actively exploited zero-day. Finally, in the world of cybersecurity podcasts, we're seeing discussions on everything from AI in industrial security to data collection and cybersecurity with Mode One's Matt. Stay tuned for more updates and remember, staying informed is the first step towards cybersecurity.

Exploits Alert

1. WhatsApp Warning for Millions of Users: WhatsApp users are urged to update their settings due to a serious vulnerability that impacts Windows users. Cybercriminals can exploit this vulnerability, emphasizing the importance of cybersecurity. Source: RSVPLive and Yahoo News.
2. Zoom Workplace Apps Vulnerability: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a vulnerability in Zoom Workplace Apps that allows malicious script injection through XSS flaws. Source: GBHackers.
3. Ivanti Security Update for Multiple Critical Endpoint Manager RCE Vulnerabilities: Ivanti has released a security update to address multiple critical vulnerabilities in its Endpoint Manager. CISA has issued a warning about these vulnerabilities. Source: GBHackers.
4. Google Patches Actively Exploited Android 0-Day Vulnerability: Google has patched an actively exploited 0-Day vulnerability in Android. CISA has issued a warning about this vulnerability. Source: GBHackers.
5. CISA Alerts on Actively Exploited CrushFTP Authentication Bypass Vulnerability: CISA has issued a warning about an actively exploited vulnerability in CrushFTP that allows authentication bypass. Source: GBHackers.

Vulnerabilities & Patches

1. Adobe Patches 11 Critical ColdFusion Flaws: Adobe has patched 11 critical vulnerabilities in ColdFusion, including CVE-2025-24446, an improper input validation vulnerability that could lead to an arbitrary file system read. Users are urged to update their systems to mitigate the risk. Source: The Hacker News
2. Apache Foundation Urges Users to Patch: Apache Foundation has addressed a major security concern, CVE-2024-52046, in versions 2.0.27, 2.1.10, and 2.2.4. However, simply applying the patch will not fully mitigate the risk, indicating further action is required. Source: MSN
3. Samsung's One UI 7 Update: Along with the major One UI 7 update, Samsung has released its monthly security patch for Galaxy devices, addressing several CVEs including CVE-2024-46852 and CVE-2024-43051. Users are encouraged to update their devices. Source: Sammy Fans
4. Microsoft's April 2025 Patch Tuesday: Microsoft has addressed a zero-day flaw, CVE-2025-29824, a local elevation of privilege bug in the Windows Common Log File System (CLFS), which is already seeing exploitation. Users are advised to apply the patch immediately. Source: Krebs on Security
5. Ivanti VPNs Vulnerable to Critical Bug: Over 5K Ivanti VPNs are vulnerable to a critical bug, CVE-2025-22457. Ivanti released a patch in February, but the bug is still under attack. Users are urged to update their systems. Source: Yahoo Finance

Podcasts

1. The AI Fix #45: The Turing test falls to GPT-4.5 - Graham Cluley: This episode discusses the latest advancements in AI, specifically the GPT-4.5 model, and its implications on cybersecurity. The podcast has won multiple cybersecurity awards, making it a credible source for tech enthusiasts. Source: https://grahamcluley.com/the-ai-fix-45/
2. How Zscaler Is Building Resilience by Design into Modern Cybersecurity - Tech Talks Daily: Marc Lueck from Zscaler discusses how resilience is being built into modern cybersecurity. The podcast offers insights into the latest trends and strategies in cybersecurity. Source: https://www.iheart.com/podcast/263-tech-talks-daily-28475628/episode/3235-how-zscaler-is-building-resilience-271972290/
3. BTS #48 - Hardware Hacking Tips & Tricks - Security Boulevard: This episode delves into the world of hardware hacking, providing tips and tricks for security professionals and enthusiasts. It's a valuable resource for those interested in the technical aspects of cybersecurity. Source: https://securityboulevard.com/2025/04/bts-48-hardware-hacking-tips-tricks/
4. Crypto in Modern Day Conflict Zones: Podcast Ep. 157 - Chainalysis: Ex-CIA analyst Yaya Fanusie discusses how digital assets are reshaping global power and fueling illicit activities. The podcast provides a unique perspective on the intersection of cryptocurrency and national security. Source: https://www.chainalysis.com/blog/crypto-in-modern-day-conflict-zones-ep-157/
5. Podcast - Limited Liability Machine: AI in Industrial Security | Insights - Holland & Knight: This episode discusses the role of AI in industrial security, with insights from product manager John Metz. It's a valuable resource for those interested in the application of AI in the security sector. Source: https://www.hklaw.com/en/insights/media-entities/2025/04/podcast-limited-liability-machine-ai-in-industrial-security

Final Words

That's a wrap for today's edition of 'ONSEC Cyber Daily'. We've covered a lot of ground, from WhatsApp warnings to Zoom vulnerabilities, and the importance of patch updates. Remember, cybersecurity is a shared responsibility. It's not just about protecting your own digital space, but also about contributing to a safer cyber environment for everyone. So, if you found today's newsletter helpful, why not share it with your friends and colleagues? Let's spread the word and make sure everyone is aware of the latest cyber threats and how to stay safe online. Stay vigilant, stay informed, and stay safe. See you in the next edition of ONSEC Cyber Daily.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn