Welcome to today's issue of ONSEC Cyber Daily, where we're diving into the latest cybersecurity threats and defenses. We're starting with a critical Wireshark vulnerability that could enable DoS attacks through malicious packet injection. Meanwhile, Android 13+ is under threat as cybercriminals use malware loaders to bypass accessibility restrictions. IBM Tivoli Monitoring is also on the radar due to a critical vulnerability, and we're discussing how cybersecurity teams can stay ahead in 2025 and beyond. The TSA is sounding the alarm about cybersecurity risks at airports, and Google is warning about a fake Salesforce app fueling cyber attacks. We're also covering a VMware NSX XSS vulnerability that exposes systems to malicious code injection, and a fake Booking.com email scam that delivers malware. Cisco ISE has a vulnerability that allows remote access to sensitive data, and a critical Cisco Nexus Dashboard vulnerability lets attackers impersonate managed devices. We're also discussing critical patches for StoreOnce vulnerabilities by HPE and an emergency fix for a zero-day exploit in Android devices by Qualcomm. Acronis Cyber Protect has several security vulnerabilities, some of them critical, and Google Chrome users are urged to update due to a critical vulnerability. We're wrapping up with a look at the latest podcast episodes discussing 'First Amendment audits' and long-term MSP marketing strategies. Stay tuned for these stories and more in today's ONSEC Cyber Daily. Stay safe, stay informed.

Exploits Alert

1. Wireshark Vulnerability Enables DoS Attack Through Malicious Packet Injection: A new vulnerability in Wireshark could allow threat actors to perform a Denial of Service (DoS) attack by injecting malicious packets. This poses a significant risk to network security. Source: cybersecuritynews.com
2. Critical Vulnerability in IBM Tivoli Monitoring: A critical vulnerability has been discovered in IBM Tivoli Monitoring. This vulnerability could potentially allow unauthorized access to sensitive information. Source: csa.gov.sg
3. TSA Issues Warning About Cybersecurity Risks At The Airport: The TSA has issued a warning about the cybersecurity risks at airports. With millions of people traveling through airports, there is a significant risk of individuals unknowingly being hacked. Source: wbznewsradio.iheart.com
4. Google Sounds Alarm on Fake Salesforce App Fueling Cyber Attacks: Google has raised an alarm about a fake Salesforce app being used to fuel cyber attacks. This highlights the increasing trend of cybercriminals exploiting human vulnerabilities rather than software flaws. Source: the420.in
5. VMware NSX XSS Vulnerability Exposes Systems to Malicious Code Injection: A vulnerability in VMware NSX could expose systems to malicious code injection. This vulnerability could potentially allow threat actors to compromise system security. Source: gbhackers.com

Vulnerabilities & Patches

1. HPE Issues Critical Patch for StoreOnce Vulnerabilities: HPE has released a critical patch for eight vulnerabilities in StoreOnce, including a severe authentication bypass vulnerability tracked as CVE-2025-37093. Users are urged to apply the patch immediately to prevent potential breaches. Source: WebProNews
2. Qualcomm Issues Emergency Fix for Zero-Day Exploit in Android Devices: Qualcomm has issued an emergency fix for two vulnerabilities, CVE-2025-21479 and CVE-2025-21480, in Android devices. Users with Qualcomm chipsets are advised to update to the latest security version to protect their devices. Source: MSN
3. Acronis Cyber Protect: Several security vulnerabilities, some of them critical: Acronis Cyber Protect has several security vulnerabilities, including a critical one tracked as CVE-2025-30412. Users are advised to patch immediately to prevent malicious code attacks. Source: heise online
4. Emergency Chrome Update! One Click Could Save Your Personal Data: A critical vulnerability in Google Chrome, CVE-2025-5419, has put an estimated 3 billion users at risk of cyberattacks. An emergency update has been released and users are urged to update their browsers immediately. Source: The420.in
5. Researcher Found 6 Critical Vulnerabilities in NetMRI Allow Attackers gain Complete Admin Access: A researcher has found six critical vulnerabilities in NetMRI that could allow attackers to gain complete admin access. Patches for affected systems have been released and users are advised to update immediately. Source: GBHackers

Podcasts

1. Podcast: What bankers need to know about 'First Amendment audits' | ABA Banking Journal: This podcast provides essential insights for bankers on 'First Amendment audits'. It features tips from ABA's Bank Security Committee, aiming to enhance the understanding of this crucial topic among banking professionals. Source: ABA Banking Journal
2. TSA Issues Warning About Cybersecurity Risks At The Airport - WBZ NewsRadio 1030 - News Audio: This episode from WBZ NewsRadio 1030 discusses the cybersecurity risks at airports, as warned by the TSA. It's a must-listen for those interested in understanding the potential cyber threats in the aviation sector. Source: iHeart
3. Heimdal's Latest Podcast Episode Unpacks Long-Term MSP Marketing Strategies with Paul Green: Heimdal's latest podcast episode features Paul Green discussing long-term MSP marketing strategies. It's a valuable resource for those looking to understand the intersection of cybersecurity and marketing. Source: Fox5SanDiego
4. Heimdal's Latest Podcast Episode Unpacks Long-Term MSP Marketing Strategies with Paul Green: This episode from Heimdal, a leading provider of unified cybersecurity solutions, delves into long-term MSP marketing strategies with Paul Green. It's a must-listen for those interested in cybersecurity solutions and marketing strategies. Source: Cision
5. Heimdal's Latest Podcast Episode Unpacks Long-Term MSP Marketing Strategies with Paul Green: In this podcast episode, Heimdal, a leading provider of unified cybersecurity solutions, announces the release of Episode 2 of its podcast series, featuring Paul Green discussing long-term MSP marketing strategies. Source: Yahoo Finance

Final Words

As we wrap up today's edition of 'ONSEC Cyber Daily', we hope you've found the information valuable in staying ahead of the curve in the ever-evolving cybersecurity landscape. From Wireshark vulnerabilities to the latest patches for critical flaws, it's clear that the world of cybersecurity is as dynamic as ever. Remember, knowledge is power, and sharing this power can make a significant difference in the fight against cybercrime. So, don't keep this information to yourself. Share this newsletter with your friends, colleagues, and anyone else who could benefit from staying informed about the latest in cybersecurity news. Also, don't forget to tune into our recommended podcasts for more in-depth discussions on these topics. Stay safe, stay informed, and let's continue to build a more secure digital world together. Until tomorrow, this is ONSEC Cyber Daily, signing off.

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)