Welcome to today's edition of ONSEC Cyber Daily, where we unravel the intricate web of vulnerabilities threatening our digital and physical worlds. Today, we dive into a chilling narrative of interconnected threats that span from the heart of our technological infrastructure to the very rails that carry our trains. In a world where Nvidia GPUs are under siege from Rowhammer attacks, the vulnerability extends beyond the digital realm, echoing through the steel veins of America's train systems. As the U.S. grapples with a 13-year-old security flaw in train brakes, the UK's National Cyber Security Centre launches a new initiative to combat vulnerabilities, underscoring the global urgency of cybersecurity. Meanwhile, Microsoft has patched over 130 flaws, yet the specter of vulnerability looms large, with 50% of Windows PCs still at risk. The Cybersecurity and Infrastructure Security Agency (CISA) raises alarms about critical vulnerabilities in train brake systems, a stark reminder of the tangible dangers lurking in our infrastructure. As we navigate this landscape of threats, from VPN bugs to Gigabyte motherboard exploits, the call for advanced security measures has never been more pressing. Join us as we explore these stories and more, unraveling the complex tapestry of cybersecurity challenges that define our era.

Exploits Alert

1. Nvidia GPUs Vulnerable to Rowhammer Attacks: Nvidia GPUs have been identified as vulnerable to Rowhammer attacks, which can lead to memory corruption and potential data breaches. This vulnerability highlights the need for enhanced security measures in GPU architecture to prevent exploitation. Source.
2. US Trains Vulnerable to 13-Year-Old Security Flaw: A longstanding security vulnerability in US train systems has been identified, posing significant risks to transportation safety. Despite its age, the flaw remains unaddressed, emphasizing the urgency for infrastructure security upgrades. Source.
3. UK's NCSC Launches Vulnerability Research Initiative: The UK's National Cyber Security Centre has launched a new initiative to bolster vulnerability research, aiming to protect critical infrastructure and businesses. This effort seeks to enhance cybersecurity resilience through strategic partnerships and innovation. Source.
4. Microsoft Fixes 130+ Flaws with July Patch Tuesday: Microsoft has addressed over 130 vulnerabilities in its latest Patch Tuesday update, underscoring the critical need for regular software updates to mitigate potential cyber threats. Users are urged to apply these patches promptly to safeguard their systems. Source.
5. CISA Flags Remote Linking Protocol Flaws in Train Systems: The Cybersecurity and Infrastructure Security Agency has issued a high-priority alert regarding vulnerabilities in train brake systems, which could be exploited to hijack control. This highlights the critical need for securing transportation infrastructure against cyber threats. Source.

Vulnerabilities & Patches

1. Google Chrome 0-day Vulnerability Actively Exploited in the Wild: Google has released patches for two critical vulnerabilities in Chrome, CVE-2025-7656 and CVE-2025-7657, which are being actively exploited. Users are urged to update their browsers immediately to protect against potential attacks. Source: Cyber Security News.
2. VMware ESXi 8.0 Update 3f Release Notes: VMware has addressed CVE-2025-41236 in its latest ESXi 8.0 update, which resolves a critical security flaw. Users are advised to apply this update to safeguard their systems from potential exploits. Source: Broadcom TechDocs.
3. Microsoft Fixed 130+ Flaws With July Patch Tuesday: Microsoft has released patches for over 130 vulnerabilities, including CVE-2025-47980, a critical information disclosure flaw in Windows Imaging Component. Immediate patching is recommended to prevent unauthorized access. Source: Latest Hacking News.
4. Kafbat UI Vulnerabilities Enable Arbitrary Code Execution via JMX Services: Kafbat version 1.0.0 has been found vulnerable to arbitrary code execution due to insecure JMX connections. Users should update to the latest version to mitigate this risk. Source: Cyber Press.
5. Critical UEFI Vulnerabilities Found in Gigabyte Motherboards: Four new vulnerabilities in Gigabyte motherboards' UEFI firmware could allow attackers to bypass secure boot and install firmware backdoors. Users are advised to apply available patches to prevent significant security breaches. Source: Tom's Hardware.

Podcasts

1. The Future Of Telecom Security: AI And Human Analysts: This podcast explores the evolving landscape of telecom security, emphasizing the synergy between AI technologies and human analysts. It features insights from victims, law enforcement, vendors, and cybersecurity experts, offering a comprehensive view of current challenges and solutions. Source.
2. Local Election Officials Concerned by Trump Cuts to Election Security Funding: This episode from the American Democracy Minute delves into the implications of reduced election security funding under the Trump administration. It highlights concerns from local election officials about the potential impact on election integrity and security. Source.
3. AI Testing and Evaluation: Learnings from Cybersecurity: Hosted by Microsoft Research, this podcast episode features Ciaran Martin discussing the intricacies of AI testing and risk assessment in cybersecurity. It provides valuable insights into the methodologies and challenges faced in ensuring AI systems are robust and secure. Source.
4. Once You Memorize the Manual, Our User Interface is Very Intuitive: The CISO Series Podcast, hosted by David Spark, offers a humorous yet insightful take on the complexities of user interfaces in cybersecurity tools. It discusses the balance between intuitive design and comprehensive functionality. Source.

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, it's clear that the digital landscape is fraught with vulnerabilities, from Nvidia GPUs to critical infrastructure like train systems. These threats remind us of the ever-present need for vigilance and proactive measures in cybersecurity. Whether it's the ticking time bomb of outdated train security or the urgent patches needed for Gigabyte motherboards, staying informed is our first line of defense. In this interconnected world, sharing knowledge is as crucial as securing our systems. If you found today's insights valuable, please share this newsletter with your friends and colleagues. Together, we can build a more secure digital future, one informed reader at a time. Stay safe, stay informed, and see you tomorrow for more essential cybersecurity updates!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)