SANS Stormcast Thursday April 17th: Apple Updates; Oracle Updates; Google Chrome Updates; CVE News;
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 696 Ratings
🗓️ 17 April 2025
⏱️ 6 minutes
🧾️ Download transcript
Summary
Apple Updates
Apple released updates for iOS, iPadOS, macOS, and VisionOS. The updates fix two vulnerabilities which had already been exploited against iOS.
https://isc.sans.edu/diary/Apple%20Patches%20Exploited%20Vulnerability/31866
Oracle Updates
Oracle released it quarterly critical patch update. The update addresses 378 security vulnerabilities. Many of the critical updates are already known vulnerabilities in open-source software like Apache and Nginx ingress.
https://www.oracle.com/security-alerts/cpuapr2025.html
Oracle Breach Guidance
CISA released guidance for users affected by the recent Oracle cloud breach. The guidance focuses on the likely loss of passwords.
https://www.cisa.gov/news-events/alerts/2025/04/16/cisa-releases-guidance-credential-risks-associated-potential-legacy-oracle-cloud-compromise
Google Chrome Update
A Google Chrome update released today fixes two security vulnerabilities. One of the vulnerabilities is rated as critical.
https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_15.html
CVE Updates
CISA extended MITRE s funding to operate the CVE numbering scheme. However, a number of other organizations announced that they may start alternative vulnerability registers.
https://euvd.enisa.europa.eu/
https://gcve.eu/
https://www.thecvefoundation.org/
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello and welcome to the Thursday, April 17th, |
| 0:03.4 | 2025 edition of the Sands Internet Storm Center's Stormcast. |
| 0:08.9 | My name is Johannes Ulrich, and today I'm recording from Orlando, Florida. |
| 0:14.9 | And well, let's start with a surprise update from Apple. |
| 0:18.5 | Apple released a minor update for its operating systems, in particular |
| 0:23.6 | iOS, iPad OS, Mac OS, TVOS, and Vision OS. This update fixes a couple of bugs, but also |
| 0:33.4 | fixes two already exploited vulnerabilities. One of these vulnerabilities affects core audio and can be |
| 0:41.8 | exploited by making the user play a malicious crafted audio stream. The next one allows the attacker |
| 0:50.1 | with Arbiter Reat and Write capability to then be able to bypass pointer authentication. |
| 0:56.6 | This already is being exploited as well. |
| 1:01.1 | So you definitely do want to update these operating systems from Apple patches. |
| 1:07.5 | Again, should be available as of today. |
| 1:12.1 | And talking about Oracle, of course, we are still kind of not sure what exactly |
| 1:17.1 | happened with these decommissioned Oracle servers that apparently were breached |
| 1:23.0 | and our user credentials were stolen. |
| 1:26.2 | However, SISA now published some guidance as to how to |
| 1:31.2 | deal with this particular issue and how to protect yourself from any sort of follow-on exploits. |
| 1:38.2 | They're focusing rightfully so on the issue of possibly stolen credentials. So essentially, |
| 1:47.7 | make sure that you're changing credentials that may have been exposed. But they're also including here specifically credentials for sort of machine authentication, |
| 1:53.2 | basically any kind of API keys or such that may be exposed as part of that breach. |
| 1:59.7 | And of course, watching your authentication logs |
| 2:03.0 | for any unusual activity. |
... |
Transcript will be available on the free plan in 12 days. Upgrade to see the full transcript now.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.