Welcome to the 5/1 issue of ONSEC Cyber Daily, your one-stop source for the latest in cybersecurity news. Today, we're diving into the growing challenge of managing cybersecurity fatigue among CISOs and their teams. We'll also be discussing the recent security alert regarding the SAP CVE-2025-31324 vulnerability and how Stormshield is responding to it. In the retail sector, we're examining the cyberattacks on M&S and Co-op, highlighting the critical vulnerabilities that affect us all. We're also looking at the terrifying emerging threats in genomic sequencing, as scientists warn of DNA hacking. We'll be exploring the MITRE funding fiasco and the call for future-ready cyber defense, as well as the CISA warning about exploited Broadcom and Commvault vulnerabilities. We'll also be discussing the launch of Tuskira's AI Analyst Workforce to automate threat defense and the PowerDNS DNSdist vulnerability that could trigger a denial-of-service. In the tech world, we'll be covering the active exploitation of the SAP NetWeaver vulnerability and the need for immediate patching. We'll also be discussing the susceptibility of millions of Apple AirPlay devices to 'AirBorne' zero-click RCE attacks and the need for immediate patching. Finally, we'll be sharing some interesting podcast episodes, including discussions on cybersecurity, hacking hijinks at the hospital, and protecting yourself from bad property advice. Stay tuned for these stories and more in today's issue of ONSEC Cyber Daily.

Exploits Alert

1. Security Alert SAP CVE-2025-31324: Stormshield Products Response: A public exploit of vulnerability SAP CVE-2025-31324 has been identified, with Stormshield products responding to mitigate the threat. This highlights the ongoing efforts of the cybersecurity community to address cyber threats. Source: Stormshield.
2. M&S and Co-op Cyberattacks Expose 'Critical Vulnerability': Recent cyberattacks on M&S and Co-op have exposed a critical vulnerability that affects us all. This serves as a warning that such incidents could become more common as technology advances. Source: The Mirror.
3. Scientists Warn of DNA Hacking: New Study Reveals Terrifying Emerging Threats: A new study reveals the terrifying emerging threats in genomic sequencing, with scientists warning of potential DNA hacking. This follows a cyberattack that disrupted the systems of Japanese pharmaceutical firm Eisai. Source: The Debrief.
4. The MITRE Funding Fiasco: A Call for Future-Ready Cyber Defense: The recent MITRE funding fiasco serves as a warning about the fragility of the current cybersecurity ecosystem. This highlights the need for future-ready cyber defense and a move away from traditional vulnerability management systems. Source: Morphisec.
5. CISA Warns of Exploited Broadcom, Commvault Vulnerabilities: CISA has issued a warning about exploited vulnerabilities in Broadcom and Commvault. This highlights the ongoing threat of cyberattacks and the need for constant vigilance. Source: OODAloop.

Vulnerabilities & Patches

1. SAP NetWeaver Vulnerability (CVE-2025-31324): A critical vulnerability in SAP's NetWeaver is being actively exploited, with attackers using webshells. The threat level is high, and it is recommended to install the emergency patch immediately. Source: Techzine Europe.
2. The MITRE Funding Fiasco: The effectiveness of patch management systems is at risk due to a potential disruption in CVE data. This could leave systems more vulnerable to threats. The situation calls for a future-ready approach to cyber defense. Source: Morphisec.
3. Apple AirPlay Vulnerabilities (CVE-2025-24206): Millions of Apple AirPlay devices are susceptible to 'AirBorne' zero-click RCE attacks due to a user interaction bypass vulnerability. Attackers can bypass "Accept" click requirements on AirPlay requests. Patching is advised. Source: TechRadar.
4. Additional Apple AirPlay Vulnerabilities (CVE-2025-24271 and CVE-2025-24137): An ACL flaw allows unauthenticated attackers to send AirPlay commands without pairing. This flaw could be chained with another vulnerability (CVE-2025-24137), which has been patched. Source: SecurityWeek.
5. PowerDNS DNSdist Vulnerability (CVE-2025-30194): A flaw in PowerDNS's DNSdist could let attackers trigger a denial-of-service. The vulnerability has a CVSS score of 7.5, and it is recommended to apply the 1.9.9 update from PowerDNS's official site immediately. Source: GBHackers.

Podcasts

1. 100 Days - The New York Times: This episode features Chris Krebs, a cybersecurity official who provides insights into the first 100 days of the Trump presidency. The episode is produced by Rob Szypko, Asthaa Chaturvedi, and Carlos. Source: New York Times
2. DEFENCE PROPERTY PODCAST: This episode titled "Buyer beware – protecting yourself from bad property advice" discusses the importance of cybersecurity in the defense sector. It is part of the Defence Connect podcast series. Source: Defence Connect
3. Smashing Security podcast #415: Titled "Hacking hijinks at the hospital, and WASPI scams", this episode explores cybersecurity issues in healthcare. The hosts, Graham Cluley and Carole Theriault, delve into the implications of hacking in hospitals. Source: Graham Cluley
4. Ahead of the Threat Podcast: Episode Nine - Meredith Griffanti: This episode of the FBI Cyber Podcast features Meredith Griffanti discussing the latest cybersecurity threats. Source: YouTube
5. MedCity FemFwd Podcast: Episode 20 with Maggie McCullough: Maggie McCullough discusses the proposed update to HIPAA Security in the context of healthcare cybersecurity. Source: YouTube

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We hope you found these insights valuable in managing your cybersecurity fatigue and staying ahead of the curve in this ever-evolving digital landscape. Remember, the key to a robust defense is staying informed and proactive. If you found our newsletter helpful, why not share it with your friends and colleagues? It's a small step that can make a big difference in the fight against cyber threats. Stay safe, stay informed, and see you in the next edition of ONSEC Cyber Daily. Until then, keep your data secure and your systems patched.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn