**ONSEC Cyber Daily - September 15, 2025** Welcome to today's edition of ONSEC Cyber Daily, where we unravel the intricate web of cyber threats and defenses shaping our digital world. In this issue, we delve into the shadowy operations of cyber-scam camps migrating to vulnerable nations, as identified by UNDOC, linking them to notorious cybercriminals and offshore gambling networks. As these threats escalate, Commvault emphasizes the urgent need for early warning systems, highlighting the staggering Sh11 billion loss faced by local firms due to cyberattacks in 2023. Meanwhile, Microsoft steps up its defense game with a crucial Patch Tuesday release, addressing over 100 vulnerabilities, including a critical zero-day flaw in SharePoint servers. Join us as we explore these interconnected stories, revealing the relentless pursuit of cyber resilience in an increasingly vulnerable world.

Exploits Alert

1. Cyber-scam camp operators shifting to vulnerable countries: Cybercriminals are increasingly targeting countries with weaker cybersecurity infrastructures. Entities linked to convicted cybercriminals, offshore gambling operators, and triad networks are believed to be behind these operations, exploiting the lack of robust defenses. This shift highlights the urgent need for global cooperation to bolster cybersecurity measures in vulnerable regions. Source: The Register
2. Commvault urges early warning systems as cyber threats rise: As cyberattacks continue to escalate, Commvault emphasizes the importance of implementing early warning systems to mitigate risks. The Communications Authority reports significant financial losses for local firms, amounting to Sh11 billion in 2023, due to these attacks. Strengthening early detection mechanisms is crucial to safeguarding against future threats. Source: Capital FM

Vulnerabilities & Patches

1. Microsoft's SharePoint Server Remote Code Execution Zero-Day Vulnerability: Microsoft has identified a critical zero-day vulnerability in its SharePoint Server that allows remote code execution. This flaw could potentially enable attackers to take control of affected systems. The vulnerability is part of Microsoft's August 2025 Patch Tuesday updates, which address over 100 security issues. Source
2. Salesloft Drift Breach Investigation Results: A recent investigation into a breach involving Salesloft and Drift has revealed significant security lapses. The breach underscores the importance of robust security measures in protecting sensitive customer data. This incident has prompted both companies to enhance their cybersecurity protocols. Source
3. Malicious GitHub Desktop Installers: Cybersecurity researchers have discovered malicious versions of GitHub Desktop installers circulating online. These compromised installers can potentially install malware on users' systems, posing a significant threat to developers and organizations relying on GitHub for code management. Users are advised to download software only from official sources to mitigate this risk. Source
4. SonicWall CVE-2024-40766 Critical Flaw: Over a year after SonicWall patched a critical vulnerability identified as CVE-2024-40766, concerns remain about its exploitation in the wild. This flaw could allow attackers to bypass security measures and gain unauthorized access to sensitive data. Organizations using SonicWall products are urged to ensure their systems are updated with the latest patches. Source
5. Microsoft's September 2025 Patch Tuesday Updates: In its September 2025 Patch Tuesday release, Microsoft has addressed numerous vulnerabilities across its product suite. These updates are crucial for maintaining system security and protecting against potential exploits. Users are encouraged to apply these patches promptly to safeguard their systems. Source

Podcasts

1. Cyber Unplugged: The Human Element in Cybersecurity: This podcast delves into the often-overlooked human factors in cybersecurity, exploring how human behavior and psychology can both strengthen and undermine security efforts. Featuring interviews with experts in psychology and cybersecurity, it offers insights into creating more resilient security cultures. Source: Cyber Unplugged Podcast.
2. Data Breach Diaries: Behind the Headlines: Each episode of this podcast takes listeners behind the scenes of major data breaches, offering detailed analyses and interviews with key players involved. It aims to provide a comprehensive understanding of how breaches occur and the lessons learned from them. Source: Data Breach Diaries.
3. Future Proof: The Evolution of Cyber Threats: This podcast explores the rapidly changing landscape of cyber threats, featuring discussions with leading cybersecurity experts and futurists. It covers emerging technologies and their implications for security, offering listeners a glimpse into the future of cybersecurity. Source: Future Proof Podcast.
4. Securing the Cloud: Challenges and Innovations: Focused on cloud security, this podcast addresses the unique challenges and innovations in securing cloud environments. It features interviews with cloud security professionals and discussions on best practices for protecting data in the cloud. Source: Securing the Cloud.
5. Cyber Law and Order: Navigating Legal Challenges in Cybersecurity: This podcast examines the intersection of law and cybersecurity, discussing legal challenges and developments in the field. It features interviews with legal experts and cybersecurity professionals, providing insights into compliance, regulations, and legal strategies. Source: Cyber Law and Order.

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, it's clear that the digital landscape is ever-evolving, with cyber-scam operators targeting vulnerable nations and cybercriminal networks lurking in the shadows. The need for robust early warning systems has never been more critical, as highlighted by the staggering losses faced by local firms. Meanwhile, Microsoft's latest Patch Tuesday reminds us of the importance of staying updated to fend off potential threats. In this interconnected world, knowledge is power. By staying informed, we can better protect ourselves and our organizations from the relentless tide of cyber threats. If you found today's insights valuable, why not share this newsletter with your friends and colleagues? Together, we can build a more secure digital future. Until next time, stay vigilant and stay safe!