This week’s Threatsday Bulletin highlights recent cybersecurity threats including firmware updates to combat rootkit malware, vulnerabilities in mobile and geospatial platforms, and sophisticated cybercriminal activities like SIM swapping and supply chain worms. The report emphasizes the importance of timely updates, verifying sources, and proactive security measures to stay ahead of evolving cyber threats. #UNC6148 #GeoServer #ScatteredSpider
Keypoints
- SonicWall released a firmware update to remove rootkit malware from SMA 100 series devices.
- A critical vulnerability in OnePlus OxygenOS could allow unauthorized access to SMS/MMS data.
- CISA detailed a cyberattack exploiting CVE-2024-36401 in GeoServer targeting a U.S. federal agency.
- Arrests of the cybercrime group Scattered Spider highlight ongoing threats of SIM swapping and data theft.
- Threat actors are deploying booby-trapped SVG files and exploiting URL spoofing techniques to evade detection.
Read More: https://thehackernews.com/2025/09/threatsday-bulletin-rootkit-patch.html