November 26, 2024 at 09:39AM VMware released a high-severity bulletin addressing five security vulnerabilities in its Aria Operations product, affecting versions 8.x and VMware Cloud Foundation 4.x and 5.x. Patches are available to fix local privilege escalation and cross-site scripting exploits. Users are urged to apply patches urgently as no workarounds exist. ### Meeting Takeaways … Read more
November 19, 2024 at 05:15PM The emerging Helldown ransomware targets organizations using VMware ESXi servers, exploiting undocumented vulnerabilities in Zyxel firewalls. Since August, it has impacted 31 victims, mainly US businesses. Helldown employs sophisticated tactics to steal and threaten to leak sensitive data, emphasizing the importance of vigilant security measures for virtualized infrastructures. ### Meeting … Read more
November 19, 2024 at 05:45AM Cybersecurity researchers have identified a new Linux variant of the Helldown ransomware, derived from LockBit 3.0. This group targets virtualized infrastructures, exploiting Zyxel security flaws. Helldown employs double extortion tactics, attacking various sectors. Additionally, a new ransomware, Interlock, has emerged, targeting similar sectors with advanced operations. ### Meeting Takeaways on … Read more
November 19, 2024 at 02:03AM Recently patched vulnerabilities in Progress Kemp LoadMaster and VMware vCenter Server are being actively exploited. CISA added CVE-2024-1212, a critical flaw, to its Known Exploited Vulnerabilities catalog. Other vulnerabilities in VMware include CVE-2024-38812 and CVE-2024-38813, with remediation recommended by December 9, 2024, for federal agencies. **Meeting Takeaways – November 19, … Read more
November 18, 2024 at 05:38PM Two VMware vCenter vulnerabilities, CVE-2024-38812 and CVE-2024-38813, have been actively exploited after Broadcom’s patch attempts. CVE-2024-38812 allows remote code execution, while CVE-2024-38813 permits privilege escalation. These flaws affect multiple vCenter and VMware Cloud Foundation versions, making them critical targets for cybercriminals. **Meeting Takeaways:** 1. **Vulnerabilities Identified**: Two critical vulnerabilities in … Read more
November 18, 2024 at 02:00PM Broadcom has warned that two VMware vCenter Server vulnerabilities, CVE-2024-38812 (a critical remote code execution flaw) and CVE-2024-38813 (a privilege escalation flaw), are being actively exploited. Customers are urged to apply new security updates to mitigate risks, as no workarounds are available for these vulnerabilities. ### Meeting Takeaways 1. **Active … Read more
November 18, 2024 at 01:31PM VMware’s critical CVE-2024-38812 vulnerability in vCenter Server has been exploited in the wild, prompting urgent updates from the company. Initially reported at a Chinese hacking contest, the flaw allows remote code execution. Past patches failed to fully resolve the issue, emphasizing the need for customers to apply fixes urgently. Here … Read more
October 22, 2024 at 01:05PM VMware released a second patch for two critical vulnerabilities in vCenter Server: CVE-2024-38812 (heap overflow, CVSS 9.8) and CVE-2024-38813 (privilege escalation, CVSS 7.5). Both flaws could allow remote code execution and administrative access, prompting urgent patching. No known exploits exist, but attackers target VMware systems extensively. ### Meeting Takeaways 1. … Read more
October 22, 2024 at 10:13AM VMware has issued a critical security update for CVE-2024-38812, a remote code execution vulnerability in vCenter Server that was inadequately addressed in September 2024. Users must apply the new patches for vCenter 7.0.3, 8.0.2, and 8.0.3 urgently, as no effective workarounds exist. ### Meeting Notes Takeaways: 1. **Security Update Release**: … Read more
October 22, 2024 at 03:18AM VMware has released updates for a critical security flaw (CVE-2024-38812) in vCenter Server, related to heap overflow vulnerabilities, allowing potential remote code execution. The flaw was previously patched inadequately. Users are urged to update to the latest versions to mitigate risks, although there’s currently no evidence of exploitation. **Meeting Takeaways … Read more