[HackerNews] Unpatched Virtual Machine Takeover Bug Affects Google Compute Engine

An unpatched security vulnerability affecting Google’s Compute Engine platform could be abused by an attacker to take over virtual machines over the network.
“This is done by impersonating the metadata server from the targeted virtual machine’s point of view,” security researcher Imre Rad said in an analysis published Friday. “By mounting this exploit, the attacker can grant access to themselves

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] Google Awards $42,000 for Two Serious Chrome Vulnerabilities

All posts, Security Week

Google on Monday announced that a security update released for the Chrome web browser patches several high-severity vulnerabilities. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[ThreatPost] HPE Fixes Critical Zero-Day in Server Management Software

All posts, ThreatPost

The bug in HPE SIM makes it easy as pie for attackers to remotely trigger code, no user interaction necessary. Source: Read More (Threatpost)

Read More

[ZDNet] Firefox 91 gets HTTPS default in private mode, enhanced cookie clearing and Windows SSO

All posts, ZDNet

Users with strict tracking protection turned on will now be able to get Firefox to remove cookies, not only from visited domains but also from trackers such as Facebook. Source: Read More (Latest topics for ZDNet in Security)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.