SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Monday, October 13th, 2025: More Oracle Patches; Sonicwall Compromisses; Unpatched Gladinet; 7-Zip Patches
Oct 12, 2025
Oracle has released an urgent patch for its E-Business Suite, raising concerns about potential exploitation. Meanwhile, a significant compromise of SonicWall's SSLVPN appliances has been reported, leading to rapid account takeovers. An unpatched vulnerability in Gladinet's CentreStack is being actively exploited, prompting users to take immediate precautions. Additionally, 7-Zip has issued patches for two critical vulnerabilities that could allow arbitrary code execution. Stay updated and ensure your systems are secure!
AI Snips
Chapters
Transcript
Episode notes
Expedite Oracle E-Business Patch
- Apply the new Oracle E-Business Suite patch immediately rather than waiting for the quarterly update.
- Treat the Sunday release and timing as suspicious and expedite mitigation tasks.
Assume SonicWall Devices Are Compromised
- If you uploaded SonicWall configs to MySonicWall, assume the device is compromised and investigate thoroughly.
- Check for new accounts, backdoors, and observed attacker IPs from the Huntress blog before trusting the device.
Mitigate Unpatched Gladinet Flaw
- For Gladinet CentreStack and TrioFox, assume compromise and apply configuration mitigations since no patch exists.
- Focus on limiting exposure and monitoring for signs of further compromise until a vendor fix is available.