The Hacker News
It's Time to Master the Lift & Shift: Migrating from VMware vSphere to Microsoft Azure
Moving to the cloud just got easier. Discover how Zerto simplifies your VMware vSphere to Microsoft Azure migration.
The Hacker News
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days
Microsoft has patched 61 new security flaws, including two zero-days actively exploited in the wild.
Bleeping Computer
VMware makes Workstation Pro and Fusion Pro free for personal use
VMWare has made Workstation Pro and Fusion Pro free for personal use, allowing home users and students to set up their own virtualized test labs and play with another operating system at little to no cost.
SecurityWeek
Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities
Microsoft patched 60 security bugs in multiple products and waned of an actively exploited Windows zero-day (CVE-2024-30051)
Security Affairs
VMware fixed zero-day flaws demonstrated at Pwn2Own2024
VMware fixed four flaws in its Workstation and Fusion desktop hypervisors, including three zero-days exploited at the Pwn2Own Vancouver 2024
Bleeping Computer
Microsoft May 2024 Patch Tuesday fixes 3 zero-days, 61 flaws
Today is Microsoft's May 2024 Patch Tuesday, which includes security updates for 61 flaws and three actively exploited or publicly disclosed zero days.
SecurityWeek
Adobe Patches Critical Flaws in Reader, Acrobat
Adobe documents multiple code execution flaws in a wide range of products, including the widely deployed Adobe Acrobat and Reader software.
The Hacker News
VMware Patches Severe Security Flaws in Workstation and Fusion Products
Researchers have uncovered a critical vulnerability in VMware's Bluetooth device, allowing code execution by malicious actors.
Bleeping Computer
VMware fixes three zero-day bugs exploited at Pwn2Own 2024
VMware fixed four security vulnerabilities in the Workstation and Fusion desktop hypervisors, including three zero-days exploited during the Pwn2Own Vancouver 2024 hacking contest.
SecurityWeek
VMware Patches Vulnerabilities Exploited at Pwn2Own 2024
VMware has patched three critical and high-severity vulnerabilities exploited earlier this year at the Pwn2Own hacking competition.
SecurityWeek
$2.5 Million Offered at Upcoming 'Matrix Cup' Chinese Hacking Contest
Chinese hacking contest Matrix Cup is offering rewards for exploits targeting OS, smartphones, enterprise software, and security products.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Staying informed is the key in this dynamic battle of cybersecurity, and due to this, the weekly news recap provides you with the newest trends, weaknesses, infringements found, and some possible defense mechanisms.
SecurityWeek
In Other News: European Parliament Breach, DocGo Hack, VMware Advisories Moved
European Parliament application breached, DocGo hacked, VMware advisories moved to Broadcom support portal.
.webp)
Cyber Security News
New Malware Attacking Windows & MS Office Users
A sophisticated malware campaign has been identified, specifically targeting Windows and Microsoft Office users through cracked software.
DarkReading
Chinese Hackers Deployed Backdoor Quintet to Down MITRE
MITRE's hackers made use of at least five different Web shells and backdoors as part of their attack chain.
Security Affairs
MITRE attributes the recent attack to China-linked UNC5221
MITRE published more details on the recent security breach, including a timeline of the attack and attribution evidence.
The Hacker News
China-Linked Hackers Used ROOTROT Webshell in MITRE Network Intrusion
MITRE, a renowned research firm, has revealed alarming details about a recent cyber attack that dates back to late 2023.
%20(1)%20(1).webp)
Cyber Security News
MITRE Shares Details on Nation-State Hackers' Intrusion into Research Network
The intrusion, believed to have been carried out by a Chinese threat actor group known as UNC5221, exploited two zero-day vulnerabilities.
CyberSecurity Dive
China-linked attackers are successfully targeting network security devices, worrying officials
Espionage groups linked to China are heavily exploiting zero days, focusing on devices that lack endpoint detection and response capabilities, one expert said.
SecurityWeek
MITRE Hack: China-Linked Group Breached Systems in December 2023
MITRE has shared more details on the recent hack, including the new malware and a timeline of the attacker’s activities.
The Hacker News
China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices
New findings suggest the ArcaneDoor cyber espionage campaign targeting network devices from Cisco (CVE-2024-20353, CVE-2024-20359).
Krebs on Security
Why Your VPN May Not Be As Secure As It Claims
Virtual private networking (VPN) companies market their services as a way to prevent anyone from snooping on your Internet usage. But new research suggests this is a dangerous assumption when connecting to a VPN via an untrusted network, because attackers…
SecurityWeek
Horizon3.ai Introduces AI-Assisted Service to Prioritize and Patch Vulnerabilities Faster
Horizon3.ai's AISaaS-based, AI-assisted penetration service allows proactive defensive action against exploitation of new vulnerabilities.
CSO
Most attacks affecting SMBs target five older vulnerabilities
Attackers target flaws for a reason: Even years after they are discovered, they still work.
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Welcome to this week's edition of the Cyber Security News Weekly Round-Up. This issue covers the latest vulnerabilities, cyber attacks, and emerging threats that have been making headlines. Stay informed and stay secure!
The Hacker News
Severe Flaws Disclosed in Brocade SANnav SAN Management Software
Multiple critical vulnerabilities discovered in Brocade SANnav SAN management application, impacting all versions up to 2.3.0.
The Cyber Express
Researchers Discover Connection Between LockBit and DragonForce Ransomware Builders
Cyble Research & Intelligence Labs (CRIL) recently discovered evidence suggesting that the threat actors behind the DragonForce ransomware group might
The Hacker News
State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage
A new stealthy malware campaign leveraging two zero-day flaws in Cisco networking gear has been uncovered, allowing covert data collection and reconna
The Record
Plasma donation company Octapharma slowly reopening as BlackSuit gang claims attack
All plasma centers were closed for six days because of the cyberattack, which the ransomware group BlackSuit has claimed.
DarkReading
MITRE ATT&CKED: InfoSec's Most Trusted Name Falls to Ivanti Bugs
The irony is lost on few, as a Chinese threat actor used eight MITRE techniques to breach MITRE itself — including exploiting the Ivanti bugs that attackers have been swarming on for months.
CyberSecurity Dive
Mitre R&D network hit by Ivanti zero-day exploits
Exploits of Ivanti VPN products have hit roughly 1,700 organizations. To Mitre, guidance from the vendor and government fell short.
The Hacker News
MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws
MITRE, a top cybersecurity firm, breached by a nation-state. Zero-days and session hijacking were the weapons.
SecurityWeek
MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days
MITRE R&D network hacked in early January by a state-sponsored threat group that exploited an Ivanti zero-day vulnerability.
Infosecurity News
MITRE Reveals Ivanti Breach By Nation State Actor
Non-profit MITRE says a sophisticated state group breached its network via two chained Ivanti zero-days
CSO
Mitre Corporation targeted by nation-state threat actors
According to the non-profit, the breach occurred in January 2024 when the nation-state threat actor conducted a reconnaissance of MITRE’s networks by exploiting one of its VPNs through two Ivanti Connect Secure zero-day vulnerabilities.
SC Magazine
MITRE research and prototyping network breached via Ivanti zero-days
Security pros say while the target was an unclassified network, the research it manages on emerging technologies could be of interest to adversaries.
Security Affairs
Akira ransomware received $42M in ransom payments from over 250 victims
Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments.
Security Affairs
MITRE revealed that nation-state actors breached its systems via Ivanti zero-days
The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by exploiting Ivanti VPN zero-days.
Bleeping Computer
HelloKitty ransomware rebrands, releases CD Projekt and Cisco data
An operator of the HelloKitty ransomware operation announced they changed the name to 'HelloGookie,' releasing passwords for previously leaked CD Projekt source code, Cisco network information, and decryption keys from old attacks..
Bleeping Computer
MITRE says state hackers breached its network via Ivanti zero-days
The MITRE Corporation says a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days.
The Cyber Express
US Atlantic Fisheries Commission Goes Offline: Ransomware Attack or Routine Maintenance?
The ransomware gang 8Base might have been responsible for an attack on the Atlantic States Marine Fisheries Commission (ASMFC) in
SecurityWeek
Akira Ransomware Made Over $42 Million in One Year: Agencies
Akira ransomware has hit over 250 organizations worldwide and received over $42 million in ransom payments.
Infosecurity News
Akira Ransomware Group Rakes in $42m, 250 Organizations Impacted
A joint advisory from Europol and US and Dutch government agencies estimated that Akira made around $42m in ransomware proceeds from March 2023 to January 2024
The Hacker News
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers
Akira Ransomware group has already extorted roughly $42 million from over 250 victims globally. They are now targeting both Windows and Linux systems.
CyberNews
Akira Ransomware rampage: $42 million looted from 250+ organizations
In less than a year of operations, the Akira Ransomware gang, known for multi-extortion tactics, has claimed approximately $42 million in ransomware proceeds.
CSO
Ransomware feared in Octapharma Plasma’s US-wide shutdown
The disruption has impacted more than 150 plasma centers in the US, with possible effects on European operations.
The Record
MITRE was breached through Ivanti zero-day vulnerabilities
The non-profit corporation overseeing federally funded research was breached in January, when unidentified threat actors performed reconnaissance on its networks by exploiting one of its VPNs.
SC Magazine
Akira takes in $42 million in ransom payments, now targets Linux servers
Security pros say threat actors gravitate towards Linux because it’s the OS of choice for many critical server functions.
Bleeping Computer
FBI: Akira ransomware raked in $42 million from 250+ victims
According to a joint advisory from the FBI, CISA, Europol's European Cybercrime Centre (EC3), and the Netherlands' National Cyber Security Centre (NCSC-NL), the Akira ransomware operation has breached the networks of over 250 organizations and raked in roughly $42 million in ransom payments.
The Hacker News
Recover from Ransomware in 5 Minutes—We will Teach You How!
Keep your organization out of the ransomware news headlines and your applications protected with this simple, effective solution from Zerto.
The Cyber Express
RansomHouse Allegedly Strikes Lopesan Hotels: 650GB Data Breach Unfolds
The RansomHouse group allegedly added Lopesan Hotels to the list of victims on its extortion site, claiming that they had
The Record
Akira ransomware gang made $42 million from 250 attacks since March 2023: FBI
The group’s large number of attacks shortly after emerging has led experts to believe it is made up of experienced ransomware actors.
Infosecurity News
Linux Cerber Ransomware Variant Exploits Atlassian Servers
The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server
Ars Technica
Broadcom says “many” VMware perpetual licenses got support extensions
Broadcom reportedly accused of changing VMware licensing and support conditions.
The Hacker News
Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware
Hackers are exploiting a critical vulnerability in Atlassian servers to gain admin access and deploy a Linux variant of Cerber ransomware.
The Record
UN agency says data stolen in ransomware attack
A locally hosted server belonging to the United Nations Development Programme was targeted, resulting in data theft.
The Record
Atlantic fisheries body confirms cyber incident after 8Base ransomware gang claims breach
A notice on the website of the Atlantic States Marine Fisheries Commission says the organization's email system is currently down.
Bleeping Computer
Chipmaker Nexperia confirms breach after ransomware gang leaks data
Dutch chipmaker Nexperia confirmed late last week that hackers breached its network in March 2024 after a ransomware gang leaked samples of allegedly stolen data.
Bleeping Computer
Palo Alto Networks zero-day exploited since March to backdoor firewalls
Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls tracked as CVE-2024-3400 since March 26, using the compromised devices to breach internal networks, steal data and credentials.
The Hacker News
Zero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active Attack
Critical security flaw found in Palo Alto Networks firewalls. Hackers are already taking advantage.
Trend Micro
How Red Team Exercises Increases Your Cyber Health
Delve into the world of red team exercises, their vital role in enhancing organizational security through simulated cyberattacks, including tactics like phishing and lateral movement within networks, and understand the need for regular testing and improvement to counter evolving threats effectively.
The Hacker News
Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included
Microsoft releases a massive patch for April 2024, fixing a record 149 flaws. Two vulnerabilities are ALREADY under attack.
Computerworld
Enterprise buyer's guide: How to choose the right UEM platform
Unified endpoint management software lets IT manage all endpoint devices — smartphones, laptops, desktops, printers, IoT devices, and others — from a single management console. Here’s what to look for in a UEM platform and key vendors to consider.
SecurityWeek
CISO Conversations: Nick McKenzie (Bugcrowd) and Chris Evans (HackerOne)
SecurityWeek discusses the CISO role with CISOs from crowdsourced hacking firms: Nick McKenzie at Bugcrowd and Chris Evans at HackerOne.
The Record
Researchers discover new ransomware gang ‘Muliaka’ attacking Russian businesses
A previously unknown ransomware gang has been attacking Russian businesses with malware based on the leaked source code from the Conti hacking group.
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Welcome to the Cyber Security News Weekly Round-Up. Each week, we will explore the latest cyber threats, vulnerabilities, and notable stories that have shaped the cybersecurity landscape.
Bleeping Computer
The Week in Ransomware - April 5th 2024 - Virtual Machines under Attack
Ransomware attacks targeting VMware ESXi and other virtual machine platforms are wreaking havoc among the enterprise, causing widespread disruption and loss of services.
Infosecurity News
Chinese Groups Deploy New TTPs to Exploit Ivanti Vulnerabilities
Mandiant research details how Chinese espionage groups are deploying new tools post-exploitation of recently patched Ivanti vulnerabilities
SecurityWeek
In Other News: 100,000 Affected by CISA Breach, Microsoft AI Copilot Ban, Nuclear Site Prosecution
CISA hack could impact 100,000 people, Microsoft AI Copilot banned by US House, UK nuclear site prosecution.
%20(1).webp)
Cyber Security News
VMware SD-WAN Vulnerabilities Let Attackers Execute Arbitrary Commands
Multiple security flaws affecting VMware SD-WAN have been addressed, allowing arbitrary commands to be executed on the intended system.
The Hacker News
Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws
Multiple China-linked threat actors exploit zero-day flaws in Ivanti appliances (CVE-2023-46805, CVE-2024-21887, CVE-2024-21893).
DarkReading
SEXi Ransomware Desires VMware Hypervisors
A Babuk variant has been involved in at least four attacks on VMware EXSi servers, in one case demanding $140 million from a Chilean data center company.
The Record
Volt Typhoon and 4 other groups targeting US energy and defense sectors through Ivanti bugs
Several China-based hacking groups, including Volt Typhoon, are targeting a trio of vulnerabilities affecting IT giant Ivanti alongside multiple cybercriminal operations.
Bleeping Computer
Hosting firm's VMware ESXi servers hit by new SEXi ransomware
Chilean data center and hosting provider IxMetro Powerhost has suffered a cyberattack at the hands of a new ransomware gang known as SEXi, which encrypted the company's VMware ESXi servers and backups.
Bleeping Computer
Chilean hosting firm's VMware ESXi servers hit by new SEXi ransomware
Chilean data center and hosting provider IxMetro Powerhost has suffered a cyberattack at the hands of a new ransomware gang known as SEXi, which encrypted the company's VMware ESXi servers and backups.
Bleeping Computer
Winnti's new UNAPIMON tool hides malware from security software
The Chinese 'Winnti' hacking group was found using a previously undocumented malware called UNAPIMON to let malicous processes run without being detected.
Ars Technica
Broadcom execs say VMware price, subscription complaints are unwarranted
Industry groups aren't giving up hope for government intervention.
The Hacker News
China-linked Hackers Deploy New 'UNAPIMON' Malware for Stealthy Operations
Notorious threat group Earth Freybug uses new malware UNAPIMON to evade detection. This China-linked group is known for espionage and financial attack
Trend Micro
Earth Freybug Uses UNAPIMON for Unhooking Critical APIs
This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child processes from being monitored via a new malware we’ve discovered and dubbed UNAPIMON.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
This weekly cybersecurity news recap keeps you informed about the latest threats, exposures, mitigation techniques, and emerging malicious tactics that could compromise systems.
Ars Technica
Proxmox gives VMware ESXi users a place to go after Broadcom kills free version
Proxmox is a Linux-based hypervisor that could replace ESXi for some users.
.webp)
Cyber Security News
Agenda Ransomware Attacking VMWare vCenter & ESXi servers WorldWide
Agenda ransomware group, also known by its aliases Qilin and Water Galura, has been ramping up its attacks on a global scale.
_Igor_Golovnov_Alamy.jpg?disable=upscale&width=1200&height=630&fit=crop)
DarkReading
Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers
A new and improved variant of the group's malware combines fileless infection, BYOVD, and more to cause havoc in virtual environments.
SecurityWeek
Greylock Makes $10M Bet on Bedrock Security
Silicon Valley startup has deposited $10 million in seed-stage funding to help organizations manage risk from cloud and gen-AI products.
Trend Micro
Agenda Ransomware Propagates to vCenters and ESXi via Custom PowerShell Script
This blog entry discusses the Agenda ransomware group's use of its latest Rust variant to propagate to VMWare vCenter and ESXi servers.
Security Affairs
Pwn2Own Vancouver 2024: participants earned $1,132,500 for 29 unique 0-days
Pwn2Own Vancouver 2024 hacking competition has ended, and participants earned $1,132,500 for demonstrating 29 unique zero-days.
SecurityWeek
Tesla, OS, Software Exploits Earn Hackers $1.1 Million at Pwn2Own 2024
Exploits targeting Tesla cars, operating systems, and popular software earned participants over $1.1 million at Pwn2Own Vancouver 2024.
Cyber Security News
29 0-days Uncovered : Hackers Earned $1,132,500 Pwn2Own Vancouver 2024
The Pwn2Own Vancouver 2024 has come to an end, with researchers receiving a total of $1,132,500 for uncovering 29 distinct zero-day
Bleeping Computer
Hackers earn $1,132,500 for 29 zero-days at Pwn2Own Vancouver
Pwn2Own Vancouver 2024 has ended with security researchers collecting $1,132,500 after demoing 29 zero-days (and some bug collisions).
Security Affairs
Pwn2Own Vancouver 2024 Day 1 - team Synacktiv hacked a Tesla
Participants earned $732,500 on the first day of the Pwn2Own Vancouver 2024 hacking competition, a team demonstrated a Tesla hack.
HACKRead
Pwn2Own 2024 Awards $700k as Hackers Pwn Tesla, Browsers, and More
Pwn2Own is back!
Infosecurity News
Security Researchers Win Second Tesla At Pwn2Own
The Synacktiv team won its second Tesla car for finding one of 19 zero-day bugs on the first day of Pwn2Own Vancouver
SecurityWeek
$200,000 Awarded at Pwn2Own 2024 for Tesla Hack
Participants earned $732,500 on the first day of Pwn2Own Vancouver 2024 for hacking a Tesla, operating systems, and other software.
Cyber Security News
Hackers Exploited Ubuntu, Adobe Reader, Sharepoint, Tesla ECU & Oracle VM
This year's Pwn2Own Vancouver 2024 event is expected to be the largest in Vancouver history, both in terms of entries and potential rewards.
Bleeping Computer
Windows 11, Tesla, and Ubuntu Linux hacked at Pwn2Own Vancouver
On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities and exploit chains to win $732,500 and a Tesla Model 3 car.
.webp)
Cyber Security News
Broadcom's CEO Showcases VMware's initial 100-day Achievements
VMware has completed its first 100 days under Broadcom's wing, transformative journey the world's leading infrastructure technology company.
CyberNews
European cloud providers: Broadcom’s pricing will push us out of business
Europe’s cloud operator association CISPE calls for an EU intervention on Broadcom’s “brutal” VMware licensing policy changes.
.webp)
Cyber Security News
Cyber Security News Weekly Round-Up : Cyber Attacks, Vulnerabilities, Threats & New Cyber Stories
With our weekly cybersecurity news summary, explore and learn about the most recent developments in the cybersecurity field.
Ars Technica
After 114 days of change, Broadcom CEO acknowledges VMware-related “unease”
"There's more to come."
The Hacker News
Microsoft's March Updates Fix 61 Vulnerabilities, Including Critical Hyper-V Flaws
Microsoft releases Patch Tuesday updates to patch 61 new vulnerabilities, including privilege escalation flaws in Azure, Windows, & Authenticator.
Loading more articles....