[HackerNews] VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client

VMware has shipped updates to address two security vulnerabilities in vCenter Server and Cloud Foundation that could be abused by a remote attacker to gain access to sensitive information.
The more severe of the issues concerns an arbitrary file read vulnerability in the vSphere Web Client. Tracked as CVE-2021-21980, the bug has been rated 7.5 out of a maximum of 10 on the CVSS scoring system,

Source: Read More (The Hacker News)

You might be interested in …

[TheRecord] Some ransomware gangs lose interest in extortion sites

In late 2019, the ransomware group known as Maze pioneered a tactic that soon spread throughout the cybercrime underground: steal encrypted data and threaten to release it publicly unless a ransom is paid. But according to data collected from the sites these groups operate, the practice that’s sometimes referred to as “double extortion” appears to […]

Read More

[SANS ISC] Do you want your Agent Tesla in the 300 MB or 8 kB package?, (Fri, Dec 31st)

All posts, Sans-ISC

Since today is the last day of 2021, I decided to take a closer look at malware that got caught by my malspam trap over the course of the year. Of the several hundred unique samples that were collected, probably the most interesting one turned out to be a fairly sizable .NET executable caught in […]

Read More

[ZDNet] AWS wins deal to store UK spy agencies’ work, brings AI to the table

All posts, ZDNet

The UK’s spy agencies will move top secret data to AWS data centers and gain access to its artificial intelligence tools. Source: Read More (Latest topics for ZDNet in Security)

Read More