Welcome to your ONSEC Cyber Daily for May 30th. Today, we're diving into a whirlwind of vulnerabilities, patches, and cyberattacks that are shaking the tech world. First up, we have a critical vulnerability in Santesoft's Sante DICOM Viewer Pro that could allow attackers to disclose information or execute arbitrary code. CISA has issued a risk evaluation and we'll be breaking down the technical aspects of this threat. Meanwhile, iPhone users are urged to install iOS 18.5 immediately to address a vulnerability that could be exploited by processing malicious content. We'll discuss the implications and how to protect yourself. In the UK, two NHS trusts have been hit by a cyberattack, putting patient data at risk. We'll explore how hackers exploited software vulnerabilities and what this means for healthcare cybersecurity. In hardware news, 9,000 Asus routers have been compromised by a botnet attack and persistent SSH backdoor. We'll delve into the details of the CVE-2023-39780 vulnerability and the new firmware update from Asus. We also have updates from Oracle and Google, who have released patches for various vulnerabilities in their systems. We'll discuss the importance of keeping your systems updated and how these patches can protect your deployment from potential risks. Finally, we'll round off with some cybersecurity insights from the latest podcast episodes. From Strata Identity's 'The Identity Heroes' series to discussions on DNS-at-the-root-of-trust and Australia's food insecurity, we'll highlight the key takeaways for cybersecurity professionals. Stay tuned for these stories and more in today's ONSEC Cyber Daily. Stay safe and stay informed.

Exploits Alert

1. Google Chrome Critical Update (CVE-2025-5280): Google has released a critical update for its Chrome web browser to patch two significant security flaws. Users are urged to update their browsers by June 5 to ensure their online safety. Source: Google
2. ASUS Router Backdoors (CVE-2025-5272): ASUS RT-AX55 models that have not received a patch for the vulnerability are at risk. The backdoor issue affects 9,000 devices and persists even after firmware updates. Source: ASUS
3. Chrome 137, Firefox 139 High-Severity Vulnerabilities (CVE-2025-5063): Both Chrome and Firefox have patched high-severity memory safety issues. The vulnerabilities include a use-after-free defect in Compositing. Source: Mozilla, Google
4. Zero-Interaction libvpx Flaw in Firefox (CVE-2025-5268): A zero-interaction flaw in Firefox's libvpx could allow attackers to run arbitrary code. Memory safety bugs could enable high-severity vulnerabilities. Source: Mozilla
5. Chrome Security Patch for High-Severity Vulnerabilities (CVE-2025-5283): Google has addressed a use-after-free vulnerability in libvpx with a security patch for Chrome. If left unpatched, these vulnerabilities could allow attackers to execute arbitrary code. Source: Google

Vulnerabilities & Patches

1. Google Chrome Critical Update (CVE-2025-5280): Google has released a critical update for its Chrome web browser to address two significant security flaws. Users are urged to update their browsers by June 5 to ensure their online safety. Source: MSN
2. ASUS Router Backdoors (CVE-2025-5272): ASUS RT-AX55 models are at risk due to a backdoor issue that affects 9,000 devices and persists even after firmware updates. ASUS has released a new firmware update addressing this vulnerability. Source: Tom's Hardware
3. Chrome 137, Firefox 139 High-Severity Vulnerabilities (CVE-2025-5063): Both Chrome and Firefox have patched high-severity memory safety issues, including a use-after-free defect in Compositing. Source: MSN
4. Zero-Interaction libvpx Flaw in Firefox (CVE-2025-5268): A zero-interaction flaw in Firefox's libvpx could allow attackers to run arbitrary code. Memory safety bugs could enable high-severity vulnerabilities. Source: MSN
5. Chrome Security Patch for High-Severity Vulnerabilities (CVE-2025-5283): Google has addressed a use-after-free vulnerability in libvpx with a security patch for Chrome. If left unpatched, these vulnerabilities could allow attackers to execute arbitrary code. Source: MSN

Podcasts

1. Strata Identity Launches 'The Identity Heroes' to Spotlight Real-World IAM Journeys: Strata Identity has launched a new video podcast series called 'The Identity Heroes'. The series features CISOs, architects, and other professionals discussing real-world Identity and Access Management (IAM) journeys in a relaxed, unscripted conversation. Source: Security Boulevard
2. Security Now Episode 1027: Unmasking ECH: Why DNS-at-the-Root-of-Trust Holds the Key to Secure Connectivity: The latest episode of the Security Now podcast discusses the importance of Encrypted Client Hello (ECH) and why DNS-at-the-root-of-trust is key to secure connectivity. The episode addresses concerns about ECH from both the C Suite and Security Operators. Source: Security Boulevard
3. Taarak Mehta Ka Ooltah Chashmah latest episode: Gokuldhaam Society gripped by Cyber Scam Panic: In the latest episode of Taarak Mehta Ka Ooltah Chashmah, a tech glitch stalls Jethalal's investment as Gokuldhaam residents race to join a bumper scheme. The episode explores the panic caused by a cyber scam in the society. Source: Money Control
4. Addressing Australia's food insecurity, with Andrew Henderson, Agsecure: Episode 3 of the Contested Ground podcast discusses cyber war, global politics, and the power of truth in the Information Age. The episode unpacks conflict and addresses Australia's food insecurity with guest Andrew Henderson from Agsecure. Source: Defence Connect

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We've covered a lot of ground, from the vulnerabilities in Santesoft's DICOM Viewer Pro to the urgent iOS update for iPhone users, NHS trusts hit by cyberattacks, and the persistent SSH backdoor in Asus routers. We've also highlighted the importance of regular patch updates and the potential risks of leaving vulnerabilities unaddressed. In the world of podcasts, we've seen the launch of 'The Identity Heroes' by Strata Identity and discussed the implications of DNS-at-the-Root-of-Trust for secure connectivity. We've also delved into the cyber scam panic gripping Gokuldhaam Society in the latest episode of Taarak Mehta Ka Ooltah Chashmah, and addressed Australia's food insecurity with Andrew Henderson of Agsecure. Remember, cybersecurity is a shared responsibility. It's not just about protecting your own systems and data, but also about helping others understand the risks and how to mitigate them. So, if you found today's newsletter helpful, please share it with your friends, colleagues, and network. Let's work together to make the cyber world a safer place for everyone. Stay safe, stay informed, and see you in the next edition of ONSEC Cyber Daily.

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)