Good morning ONSEC Cyber Daily readers! In today's issue, we're diving into the deep end of cybersecurity, starting with the increasing risks to national defense from cyberattacks. We'll explore how the FBI is warning of cyber actors exploiting end-of-life routers, a threat that hit the healthcare industry hardest last year. In the telecom sector, the battle to safeguard connectivity is on, with AI playing a pivotal role on both sides of the fence. We'll also delve into the latest vulnerabilities and patches, including the MDaemon Email Server XSS vulnerability, a NATO-flagged vulnerability in VMware, and newly discovered Firefox zero-days. Google and Microsoft have also issued emergency updates to patch actively exploited vulnerabilities, while CISA has added the Ivanti EPMM Zero-Day to its KEV Catalog. In the world of podcasts, we'll highlight the upcoming SaviTalk podcast on identity security, and discuss balancing cybersecurity and innovation at an acceptable risk. We'll also give you a sneak peek into the latest episodes from T. Rowe Price, Infosecurity Magazine, and more. So buckle up and get ready for a deep dive into the world of cybersecurity. Stay safe, stay informed, and as always, thank you for trusting ONSEC Cyber Daily as your go-to source for cybersecurity news.

Exploits Alert

1. Research at risk: Protecting national defense from cyberattacks: A recent study by Cornell University highlights the increasing risk of cyberattacks on national defense systems. The research emphasizes the need for robust cybersecurity measures to protect sensitive information and infrastructure. Source: EurekAlert!
2. FBI warns of cyber actors exploiting end-of-life routers: The FBI's 2024 Internet Crime Report reveals that the health care industry faced more cyberthreats last year than any other critical infrastructure industry. The report also warns about cybercriminals exploiting end-of-life routers. Source: AHA News
3. Alert for telecoms: Cybersecurity, AI, and battle to safeguard connectivity: Telecom providers are increasingly using AI to optimize networks and enhance customer service. However, this has also opened up new avenues for cybercriminals to exploit. The industry is now in a battle to safeguard connectivity. Source: TelecomLead

Vulnerabilities & Patches

1. CISA Adds MDaemon Email Server XSS Vulnerability to KEV Catalog Following Exploitation: In response to the disclosure of CVE-2024-11182, MDaemon Technologies has released an update addressing the XSS vulnerability in versions 24.5.1c. This patch is crucial to prevent potential security breaches. Source: cybersecuritynews.com
2. NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch: The highest-rated vulnerability, CVE-2025-41229, is a directory-traversal issue that scores 8.2/10 on the CVSS scale. VMware has released a patch to address this issue, which could be exploited by a malicious actor with network access to port. Source: securityweek.com
3. Newly discovered Firefox zero-days addressed: Firefox has patched two newly discovered zero-day vulnerabilities, tracked as CVE-2025-4918. Exploitation of these vulnerabilities could lead to serious security issues, making the patch a necessity for all users. Source: scworld.com
4. Google Issues Emergency Chrome Update to Patch an Actively Exploited Vulnerability: Google has released an emergency update for its Chrome browser to patch a critical vulnerability identified as CVE-2025-4664. This vulnerability is currently being exploited, making the patch a critical security measure. Source: technadu.com
5. Windows Privilege Escalation Flaw Allows Attackers to Gain Admin Access in Under 300 Seconds: The flaw, tracked as CVE-2025-24076, has been patched by Microsoft but represents a significant security risk for unpatched systems. The vulnerability could allow attackers to gain admin access in under 300 seconds. Source: gbhackers.com

Podcasts

1. Saviynt Unveils SaviTalk Podcast on Identity Security: Saviynt, a leading provider of intelligent identity and access management solutions, has launched a new podcast series, SaviTalk. The first episode is set to air in early June, with the initial recordings made in April at the RSA. Source: SecurityBrief Asia
2. How to balance cybersecurity and innovation at an acceptable risk: Techzine Global has released a new podcast episode discussing the balance between cybersecurity and innovation. The episode provides insights into managing risks while fostering innovation. Source: Techzine Global
3. SPECIAL T. ROWE PRICE PODCAST EPISODE EXPLORES IMPACT OF BEHAVIORAL: T. Rowe Price, a global investment management firm, has released a new episode of "The Angle," an investment-themed podcast. The latest episode explores the impact of behavioral aspects on investment decisions. Source: Yahoo Finance
4. Your Guide to Infosecurity Europe: Insider Tips from Leading Cybersecurity Experts: Infosecurity Magazine has released a new podcast episode that provides a deep dive into the world of Infosecurity Europe. The episode features two veteran cybersecurity pros sharing their insights and tips. Source: Infosecurity Magazine
5. No More Refugees, Trump Said. Except White South Africans: The New York Times has released a new podcast episode discussing the Trump administration's stance on refugees, specifically focusing on white South Africans. The episode features John Eligon, the Johannesburg bureau chief for The New York Times. Source: The New York Times

Final Words

And that's a wrap for today's ONSEC Cyber Daily! From the risks threatening national defense to the latest vulnerabilities and patches, we've covered a lot of ground. Remember, in the world of cybersecurity, knowledge is your best defense. We hope you found today's newsletter informative and engaging. If you did, why not share it with your friends and colleagues? They might find it just as useful as you do. Don't forget to tune in to the latest cybersecurity podcasts we've highlighted today. They're packed with expert insights and practical advice to help you stay one step ahead of the cyber threats. Thank you for being a part of the ONSEC community. Together, we can make the digital world a safer place. See you tomorrow for more cybersecurity news and updates. Stay safe and secure!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)