Welcome to your daily dose of ONSEC Cyber Daily. Today, we're diving into a series of alerts and vulnerabilities that are shaking up the cybersecurity landscape. First up, the Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert about an actively exploited vulnerability in Langflow. This is a serious concern, as cybercriminals are also targeting your client's retirement information. Meanwhile, across the globe, a Pakistan-based group claims to have breached Indian defense data, putting Indian cybersecurity agencies on high alert. In other news, the SonicBoom attack chain is enabling hackers to bypass login and gain admin control, and Google is addressing an actively exploited vulnerability in May's Android security update. We also have updates on multiple security flaws in MediaTek's smartphone, tablet, and TV chipsets, and a new vulnerability in Apache Parquet Java. But it's not all doom and gloom. We're also featuring some insightful podcast episodes today, including a discussion on fostering better relationships with cybersecurity experts, lessons from rugby with Albert Oriol, and the role of AI and machine learning in medical device cybersecurity. Stay tuned for these stories and more in today's ONSEC Cyber Daily. Stay safe, stay informed.

Exploits Alert

1. CISA Issues Alert on Langflow Vulnerability Actively Exploited in Attacks: The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert about an actively exploited vulnerability in Langflow. Users are advised to update their systems to the latest version to mitigate the risk. Source: GBHackers
2. Warning: Cyber criminals are targeting your client's retirement information: Cybercriminals are increasingly targeting retirement information. It is crucial to identify any vulnerabilities and weaknesses from an unbiased perspective and clearly define and assign information security roles. Source: JD Supra
3. Cyber Onslaught Alert: Pakistan Based Group Claims Breach of Indian Defence Data: A Pakistan-based group has claimed to have breached Indian defence data. Indian cybersecurity agencies are on heightened alert conducting investigations to identify vulnerabilities and gauge the extent of potential compromise. Source: Sudarshan News
4. SonicBoom Attack Chain Lets Hackers Bypass Login and Gain Admin Control: The SonicBoom attack chain allows hackers to bypass login procedures and gain administrative control. Its prevalence on network edges makes it a particularly attractive target for cybercriminals. The U.S. Cybersecurity and Infrastructure Security Agency has issued a warning about this vulnerability. Source: GBHackers

Vulnerabilities & Patches

1. CISA Issues Alert on Langflow Vulnerability Actively Exploited in Attacks: The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding a vulnerability in Langflow, tracked as CVE-2025-3248. This flaw allows unauthenticated attackers to exploit the system. Users are advised to update Langflow to the latest version (1.2.4) immediately. Source: GBHackers
2. Google Addresses Actively Exploited Vulnerability in May's Android Security Update: Google has addressed a high-severity vulnerability, CVE-2025-27363, in its May Android security update. The vulnerability, which may be under limited, targeted exploitation, is an out-of-bounds write defect. Source: CyberScoop
3. MediaTek Fixes Multiple Security Flaws in Smartphone, Tablet, and TV Chipsets: MediaTek has fixed multiple security flaws, including CVE-2025-20667, which is an issue of inadequate encryption strength in Modem. MediaTek has coordinated with OEMs to ensure patch availability. Source: GBHackers
4. Apache Parquet Java Vulnerability CVE-2025-46762 RCE Risk: A remote code execution (RCE) risk has been identified in Apache Parquet Java, tracked as CVE-2025-46762. Users on version 1.15.1 are advised to set the JVM system property -Dorg.apache.parquet as a patch. Source: The Cyber Express

Podcasts

1. APDR Podcast Episode 91 with host Kym Bergmann - Asia Pacific Defence Reporter: This episode discusses the evolving needs of maritime security and the recent deal India signed for Rafale Marine aircraft. Source: Asia Pacific Defence Reporter
2. Fostering better relationships with cyber security experts - Lawyers Weekly: This episode emphasizes the importance of fostering better relationships with cybersecurity experts. Listeners are encouraged to show their support by rating or leaving a review on Apple Podcasts. Source: Lawyers Weekly
3. CIO Podcast – Episode 94: Lessons from Rugby with Albert Oriol | Healthcare IT Today: The 94th episode of the CIO podcast hosted by Healthcare IT Today features Albert Oriol, Former CIO, discussing the different ways rugby lessons can be applied in the IT sector. Source: Healthcare IT Today
4. AI and Machine Learning in Medical Device Cybersecurity - Tech Briefs: This episode focuses on the application of AI and machine learning in medical device cybersecurity. Listeners are encouraged to subscribe to the Medical Design Briefs podcast on Apple Podcasts. Source: Tech Briefs

Final Words

And that's a wrap for today's edition of ONSEC Cyber Daily. We've covered a lot of ground, from the urgent alert issued by CISA on the Langflow vulnerability to the latest cybersecurity podcasts that are making waves in the industry. Remember, the world of cybersecurity is ever-evolving, and staying informed is your first line of defense. We hope you found this information valuable and we encourage you to share this newsletter with your friends and colleagues. They might find it helpful too. After all, in the realm of cybersecurity, knowledge is power. Stay safe, stay updated, and we'll catch you in the next edition of ONSEC Cyber Daily. Until then, keep your data secure and your systems patched.

x.com

X (formerly Twitter)

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn