VMware on Tuesday shipped security updates to address a critical security flaw in its VMware Cloud Foundation product. Tracked as CVE-2021-39144, the issue has been rated 9.8 out of 10 on the CVSS vulnerability scoring system, and relates to a remote code execution vulnerability via XStream open source library. “Due to an unauthenticated endpoint that […]
Cyber News, Cyber Threat Trends
“We told you to stop but you ignored us,” said the French regulator, “so now we’re coming after you again.”
Cyber News, Cyber Threat TrendsAs ransomware attacks continued this year, a few key groups inflicted some of the greatest damage to their victims. The post The most dangerous and destructive ransomware groups of 2022 appeared first on TechRepublic.
Cyber News, Cyber Threat TrendsBusiness email compromise is a severe threat that might affect any company. One promising way to improve detection on this kind of cybercrime might be intent-based detection. The post Secure corporate emails with intent-based BEC detection appeared first on TechRepublic.
Cyber News, Cyber Threat TrendsRussia had the most breaches overall and France had the highest breach density
Cyber News, Cyber Threat Trends
Should this issue be handled by CloudFormation automatically behind the scenes? I added a customer managed prefix list to a security group and then I started getting this error message: CloudFormation cannot update a stack when a custom-named resource requires replacing This is a very strange error message to me. What exactly is a custom-named resource? I […]
Cyber News, Cyber Threat TrendsThe out-of-bounds write issue in the kernel could be exploited to execute arbitrary code
Cyber News, Cyber Threat Trends
The Hive ransomware-as-a-service (RaaS) group has claimed responsibility for a cyber attack against Tata Power that was disclosed by the company less than two weeks ago. The incident is said to have occurred on October 3, 2022. The threat actor has also been observed leaking stolen data exfiltrated prior to encrypting the network as part of its […]
Cyber News, Cyber Threat Trends
A high-severity vulnerability has been disclosed in the SQLite database library, which was introduced as part of a code change dating all the way back to October 2000 and could enable attackers to crash or control programs. Tracked as CVE-2022-35737 (CVSS score: 7.5), the 22-year-old issue affects SQLite versions 1.0.12 through 3.39.1, and has been addressed in version 3.39.2 released on […]
Cyber News, Cyber Threat Trends