ONSEC Weekly Cybersecurity Newsletter

Welcome to this week’s edition of ONSEC’s Cybersecurity Newsletter! Stay informed with the latest ?? Exploits Alert, ??? Vulnerabilities & Patches, and top ?? Cybersecurity Podcasts to help you stay ahead of emerging threats.

?? Exploits Alert

Attacks With Newly Addressed Win32 Bug Ongoing For Two Years A high-severity Win32 kernel subsystem zero-day vulnerability has been exploited by malicious actors for two years before being recently fixed. Source: MSSP Alert

Security Camera Maker's Devices Hijacked into Botnet Cybercriminals are exploiting a command injection vulnerability in an old IP camera to build a botnet, according to security researchers. Source: MSN

Juniper Junos OS Improper Isolation Vulnerability Exploited in Wild CISA has issued a warning about a newly discovered vulnerability in Juniper Junos OS that is being exploited. Source: Cybersecurity News

Medusa Ransomware Impacting Critical Infrastructure The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a warning about the Medusa ransomware impacting critical infrastructure. Source: Infosecurity Magazine

Multiple Zoom Client Vulnerabilities Expose Sensitive Data The latest vulnerabilities in Zoom highlight the fragility of widely adopted communication platforms in the face of sophisticated cyberattacks. Source: Cyber Security News

?? Vulnerabilities & Patches

Apple's Critical WebKit Vulnerability (CVE-2025-24201) Apple has urged users to update their devices immediately to patch a critical WebKit vulnerability that could allow hackers to exploit the device. Source: Hacker News

Fortinet Vulnerabilities (CVE-2025-24472) A new Lockbit-linked ransomware group is targeting Fortinet vulnerabilities. The Mora_001 attack chain deploys SuperBlack ransomware for double extortion. Source: SC Media

Cisco's IOS XR Vulnerabilities (CVE-2025-20209) Cisco has patched high-severity bugs in the Internet Key Exchange version 2 (IKEv2) function and in the handling of specific packets. Source: SecurityWeek

VMware ESXi Vulnerabilities (CVE-2025-22224) VMware users are urged to update their ESXi products immediately due to critical vulnerabilities. CVE-2025-22224 has been exploited in real-world attacks. Source: Kaspersky official blog

GitLab's Critical Authentication & RCE Flaws (CVE-2025-27407) GitLab has addressed a critical vulnerability in the Ruby graphql library that could allow remote code execution. Immediate action is recommended. Source: SOCRadar

?? Top Podcasts This Week

Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 226 Thibaut van Marke and Amy Allen from Orlando Health discuss the importance of health care and life sciences in today's world. Source: JD Supra

Prioritizing Your Security Gaps with Pentera - CISO Series Jay Mar-Tang, a field CISO, discusses the importance of prioritizing security gaps in the cyber world. Source: CISO Series

We've Been Fooled. There Is No Talent Shortage. - CISO Series This episode challenges the common notion of a talent shortage in cybersecurity. Rachel Bicknell leads the discussion. Source: CISO Series

Tariffs, Peace (Maybe) in Ukraine and a Shifting Global Power Struggle Episode 6 discusses the expanding world of state-sponsored cyber warfare and the importance of training in National Defence. Source: Defence Connect

The Quantum Leap | Insights - Holland & Knight Public Policy & Regulation attorney Paul Stimers discusses the implications of cybersecurity in the context of Newton Investment Management. Source: Holland & Knight

Stay secure, stay informed.

ONSEC.io Team Experts in Penetration Testing and Cybersecurity Solutions

Talk to ONSEC Team