VMWare Archives - Page 3 of 3 - Cyber Security Minute

VMware releases workarounds for another critical flaw (CVE-2020-4006)

Issued by: Help Net Security

For the second time in less than a week, VMware is warning about a critical vulnerability (CVE-2020-4006). This time, the affected solutions are VMware Workspace One Access, Access Connector, VMware Identity Manager and VMware Identity Manager Connector. As some of these are components of the VMware Cloud Foundation (vIDM) and vRealize Suite Lifecycle Manager (vIDM)…

Vulnerabilities

VMware Patches Vulnerabilities Exploited at Chinese Hacking Contest

Issued by: Security Week

At the 2020 Tianfu Cup International PWN Contest, which took place earlier this month in China, participants earned a total of more than $1.2 million for exploits targeting Chrome, Safari, Firefox, Adobe Reader, Docker, VMware ESXi, CentOS, the iPhone, the Samsung Galaxy S20 phone, Windows, and routers from TP-Link and Asus. The 360 ESG Vulnerability…

Vulnerabilities

Cybersecurity after COVID-19: Securing orgs against the new threat landscape

Issued by: Help Net Security

Picture this: An email comes through, offering new COVID-19 workplace safety protocols, and an employee, worn down by the events of the day or feeling anxious about their safety, clicks through. In a matter of seconds, the attacker enters the network. Factor in a sea of newly remote workers and overloaded security teams, and it’s…

Vulnerabilities

VMware Fixes Fusion Vulnerability Introduced by Previous Patch

Issued by: Security Week

VMware informed customers in mid-March that it had patched a high-severity privilege escalation vulnerability in Fusion, Remote Console (VMRC) and Horizon Client for Mac. The flaw, tracked as CVE-2020-3950, can be exploited by an attacker with regular user privileges to escalate privileges to root. The researchers who independently reported the issue to VMware, Rich Mirch…

Malware & Threats, Network Security

Know thy enemy: The evolving behaviors of today’s cybercriminals

Issued by: Help Net Security

Organizations in the energy/utilities, government, manufacturing, and healthcare sectors have witnessed an increase in cyberattacks over the past year. In fact, recent research found that nearly 1,000 government agencies and healthcare institutions experienced attacks in 2019. As these industries evolve and become more digitized, attackers have the opportunity to access more data than ever before….

Malware & Threats

Modern malware is increasingly leveraging evasive behaviors

Issued by: Help Net Security

Modern malware is increasingly leveraging evasive behaviors, a new report by VMware Carbon Black released at RSA Conference 2020 has revealed. The report uncovers the top attack tactics, techniques, and procedures (TTPs) seen over the last year and provides specific guidance on ransomware, commodity malware, wipers, access mining and destructive attacks. Among some of the…

Cloud Security

Arista partners with VMware and Zscaler for hybrid cloud security

Issued by: Help Net Security

Arista Networks announced security capabilities focused on private, hybrid and public cloud networking. Based on Arista’s cloud-grade EOS and CloudVision software, Arista’s approach redefines silo security into holistic security designed for a multi-cloud environment. Key integration includes VMware NSX Data Center and Zscaler for holistic security. The new security expansion delivers three attributes: network segmentation,…