SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Friday, June 27th, 2025: Open-VSX Flaw; Airoha Bluetooth Vulnerablity; Critical Cisco Identity Service Engine Vuln;
Jun 27, 2025
Developers beware: a flaw in the Open-VSX extension marketplace could jeopardize every extension available. Bluetooth vulnerabilities in the Airoha chipset may allow eavesdropping on personal devices, raising alarms about privacy. Additionally, critical weaknesses in Cisco's Identity Services Engine could enable remote attackers to gain root access. Learn about the growing threat landscape and upcoming events aimed at boosting cybersecurity awareness!
AI Snips
Chapters
Transcript
Episode notes
Open-VSX Supply Chain Risk
- Open-VSX extension marketplace had a flaw allowing any extension to be compromised via a GitHub action running npm install.
- This enables malicious updates across trusted extensions, posing a significant supply chain threat to developers using VS Code clones.
Airoha Bluetooth Eavesdropping Flaw
- Airoha Bluetooth chipsets in major brands have vulnerabilities permitting headset takeover and eavesdropping.
- Flawed authentication in a custom protocol allows attackers in Bluetooth range to use headsets as covert microphones.
Patch Critical Cisco ISE Flaws
- Cisco Identity Services Engine vulnerabilities allow unauthenticated attackers remote root command execution.
- Administrators should immediately apply Cisco's patches to protect this critical network security component.