Welcome to today's edition of ONSEC Cyber Daily, where the digital realm's latest developments unfold into a gripping narrative of innovation and vulnerability. As the cybersecurity landscape evolves, Kikimora steps into the spotlight with the launch of Kikimora Agent, an AI-powered platform designed to fortify SMEs against cyber threats. Meanwhile, the Australian Cyber Security Centre raises alarms over the active exploitation of SonicWall SSL vulnerabilities, urging immediate action to safeguard networks. Microsoft finds itself under scrutiny, addressing a staggering 81 vulnerabilities in its September Patch Tuesday, including critical zero-day flaws. As patches roll out across the tech industry, from Adobe to GitLab, the race to secure digital fortresses intensifies. Join us as we delve into these stories and more, unraveling the intricate web of cybersecurity challenges and solutions shaping our digital future.

Exploits Alert

1. ACSC Warns of SonicWall SSL VPN Exploit (CVE-2024-40766): The Australian Cyber Security Centre has issued a warning about the active exploitation of a critical vulnerability in SonicWall SSL VPNs. This flaw allows attackers to bypass authentication and gain unauthorized access to sensitive data. Organizations using SonicWall products are urged to apply patches immediately to mitigate potential risks. Source: Cyble.
2. Chrome Security Update Patches Critical Remote Code Execution Vulnerability: Google has released a security update for Chrome to address a critical remote code execution vulnerability. This flaw could allow attackers to execute arbitrary code on affected systems, potentially leading to data breaches or system compromise. Users are advised to update their browsers promptly to protect against potential exploits. Source: Cybersecurity News.
3. Microsoft Warns of Active Directory Domain Services Vulnerability: Microsoft has issued a warning regarding a vulnerability in Active Directory Domain Services that could allow attackers to escalate privileges. This flaw poses a significant risk to enterprise environments, and administrators are encouraged to apply the latest security updates to safeguard their networks. Source: Cybersecurity News.
4. Critical Microsoft Office Vulnerabilities Let Attackers Execute Malicious Code: Multiple vulnerabilities in Microsoft Office have been identified, allowing attackers to execute malicious code remotely. These flaws could be exploited through specially crafted Office documents, making it crucial for users to install the latest patches to prevent potential attacks. Source: Cybersecurity News.
5. Critical Adobe Commerce Flaw CVE-2025-54236 Alert: A critical vulnerability in Adobe Commerce, identified as CVE-2025-54236, has been disclosed, which could allow attackers to execute arbitrary code. This flaw affects e-commerce platforms using Adobe Commerce, and administrators are urged to apply the necessary updates to protect their systems from exploitation. Source: The Cyber Express.

Vulnerabilities & Patches

1. Op-Ed: September Patch Tuesday – Microsoft addresses 176 vulnerabilities: Microsoft has rolled out a significant security update addressing 176 vulnerabilities, including two zero-day exploits. This comprehensive patch aims to mitigate risks across various Microsoft products, enhancing overall system security. The update underscores Microsoft's commitment to maintaining robust cybersecurity defenses. Source: Cybersecurity Connect
2. Windows BitLocker Vulnerability Could Let Attackers Elevate Privileges: A critical vulnerability in Windows BitLocker has been patched, which previously allowed attackers to elevate privileges through memory management errors. The update addresses these use-after-free conditions, reinforcing system integrity and preventing unauthorized access. This patch is crucial for maintaining secure Windows environments. Source: Cyber Press
3. Multiple Vulnerabilities in GitLab Patched, Blocking DoS and SSRF Attack Vectors: GitLab has released patches for multiple vulnerabilities, including a severe SSRF flaw with a CVSS score of 8.5. These patches prevent potential denial-of-service and server-side request forgery attacks, safeguarding GitLab environments from exploitation. Users are urged to update to the latest version to ensure protection. Source: GB Hackers
4. Microsoft September Security Patch: Microsoft has addressed a zero-day vulnerability affecting the SMB protocol, which posed an elevation-of-privilege risk. This patch is part of the broader September security update, which aims to fortify systems against potential exploits. Users are encouraged to apply these updates promptly to mitigate security threats. Source: Redmondmag.com
5. Adobe Releases Patch for Critical Flaw in Commerce and Magento: Adobe has issued an emergency patch for a critical flaw in its Commerce and Magento platforms. While the CVE entry does not explicitly mention remote code execution risks, the patch is essential for preventing potential exploitation. Users are advised to implement the update to secure their systems. Source: Infosecurity Magazine

Podcasts

1. Whopper Hackers, and AI Whoppers: This episode of the award-winning “Smashing Security” podcast delves into the world of cybercrime, exploring the latest hacking incidents and the role of AI in cybersecurity. The hosts provide a humorous yet insightful take on recent events, making it a must-listen for anyone interested in the intersection of technology and crime. Source: YouTube.
2. Security Intelligence: In the inaugural episode of this weekly podcast, experts discuss the ease of committing cybercrime in today's digital landscape. The panelists, including Jeff Crume and Suja Viswesan, analyze the latest schemes from notorious hacking groups and the implications of AI on cybersecurity. Source: IBM.
3. Vibe Hacking, HexStrike AI, and the Latest Scheme from Scattered Lapsus$ Hunters: This episode of Security Intelligence explores the concept of vibe hacking and how it is being exploited by cybercriminals. The discussion includes insights into the HexStrike AI and the notorious Scattered Lapsus$ group, offering listeners a deep dive into emerging threats. Source: IBM.
4. Vibe Coding? Meet Vibe Security: TechCrunch's flagship podcast, Equity, introduces listeners to the concept of vibe security, a new frontier in cybersecurity. The episode covers the latest threats, including supply chain attacks, and features expert analysis on how companies can protect themselves in this evolving landscape. Source: TechCrunch.
5. Blood Center Details Emerge, UK EC Recovers, Plex Suffers Breach: This episode from the CISO Series provides a comprehensive overview of recent cybersecurity incidents, including a blood center attack and a breach at Plex. The podcast offers detailed analysis and recovery strategies, making it an essential listen for cybersecurity professionals. Source: CISO Series.

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, it's clear that the cybersecurity landscape is as dynamic as ever. From Kikimora's innovative AI-powered security solutions to the critical vulnerabilities patched by tech giants like Microsoft and Adobe, staying informed is more crucial than ever. These stories remind us of the relentless pace of cyber threats and the innovative responses they demand. We hope you found today's insights valuable and that they empower you to navigate the digital world with confidence. If you enjoyed this newsletter, please share it with your friends and colleagues. Together, we can build a more informed and secure community. Until tomorrow, stay safe and cyber-aware!