Recent Security News
-
Exit Scam: BlackCat Ransomware Group Vanishes After $22 Million Payout
March 6, 2024 at 11:27AM BlackCat ransomware operators have shut down their darknet website in an apparent exit scam, following a fake law enforcement seizure banner. The group allegedly received a $22 million ransom payment, refused to share proceeds, and may rebrand in the future. Cybersecurity experts speculate the motives, citing possible internal concerns and…
-
VMware fixes critical sandbox escape flaws in ESXi, Workstation, and Fusion
March 6, 2024 at 10:49AM VMware released security updates addressing critical sandbox escape vulnerabilities in ESXi, Workstation, Fusion, and Cloud Foundation. The flaws, tracked as CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, and CVE-2024-22255, carry a severity rating and require local administrative privileges for exploitation. VMware recommends removing USB controllers from virtual machines as a mitigation strategy. Older ESXi…
-
VMware fixes critical sandbox escape flaws in VMware ESXi, Workstation, and Fusion
March 6, 2024 at 10:41AM VMware released security updates to address critical sandbox escape vulnerabilities in ESXi, Workstation, Fusion, and Cloud Foundation products, potentially allowing unauthorized access to host systems and virtual machines on the same host. The advisory details four vulnerabilities, their impact, and provides a workaround for some issues. VMware also made security…
-
Anatomy of a BlackCat Attack Through the Eyes of Incident Response
March 6, 2024 at 10:39AM Sygnia’s prompt intervention prevented a potentially devastating ransomware attack on a company’s network by disconnecting it from the internet. The attackers, BlackCat, had penetrated the system through a compromised vendor. While some data was exfiltrated, encryption was thwarted, and the victim’s decisive action and Sygnia’s expertise proved pivotal in mitigating…
-
Cloud Security Firm Sweet Security Raises $33 Million, 6 Months After Emerging From Stealth
March 6, 2024 at 10:39AM Cloud security firm Sweet Security recently secured $33 million Series A funding, following $12 million seed funding. The Tel Aviv-based firm plans to expand its technology and go-to-market operations for cloud runtime security. It combines military expertise with eBPF-based technology to detect vulnerabilities and provide real-time insights for cloud security…