VMware releases patches for serious vulnerabilities in many products
VMware warns customers of multiple new vulnerabilities in a range of products. Some open the doors for remote code execution (RCE) attacks.
Affected products include VMware Workspace ONE Access, VMware Identity Manager (vIDM), VMware vRealize Automation (vRA), VMware Cloud Foundation, and VMware... Read more
Avast launch new features to prevent online scams and phishing
Avast has released new features to protect users from online scams and security threats.
Avast today announced the addition of several new capabilities to its leading product, i.e., Avast One, which is meant to safeguard users from fraud, online scams, and other security threats. Email Guardian,... Read more
‘Spring4Shell vulnerability heavily exploited, especially in Europe’
The Spring4Shell vulnerability is being abused in large numbers. European companies appear to be favoured among attackers.
In the first four days following Spring4Shell's discovery, one in six of those affected had been targeted by hackers. This is concluded by Check Point in a recent report. T... Read more
Noname Security joins F5 Technology Alliance
API security specialist Noname Security is partnering with F5. The provider specializes in load balancing and infrastructure services. New integrations support joint customers.
Noname Security was founded in 2020. In the past two years, its market value rose to more than a billion dollars. The ... Read more
Conti leaks data from housing associations after attack on Sourcing Company
Ransomware group Conti leaked customer data of eight Dutch housing associations. The associations were attacked after a breach of their IT service provider, The Sourcing Company.
On March 27, Conti infiltrated the servers of The Sourcing Company. The Dutch IT service provider works for several h... Read more
Singularity XDR achieves highest analytics score in ATT&CK Evaluation
SentinelOne Singularity XDR achieved the highest analytics score in the MITRE Engenuity ATT&CK Evaluation 2022, a study of cybersecurity platforms' effectiveness.
Each year, MITRE Engenuity puts security vendors to the test. The world's largest platforms are strained with relevant threats. ... Read more
Many housing corporations affected by breach of The Sourcing Company
An attack on ICT service provider The Sourcing Company led to data leaks at nine Dutch housing corporations.
A recent breach at The Sourcing Company has many consequences for housing corporations that purchased services from the ICT service provider. A total of nine Dutch housing corporations h... Read more
Qualys launches Multi-Vector EDR 2.0
Qualys developed Multi-Vector EDR 2.0 to surface serious and critical incidents.
Security specialist Qualys recently announced Multi-Vector EDR 2.0. The EDR system delivers complete threat detection through vulnerability assessments and fixing.
The platform includes risk-hunting and various m... Read more
German police shut down Hydra Market, darkweb site for drugs and data
German police have shut down Hydra Market. 17 million users and 19,000 sellers used the darkweb forum to trade drugs, data and forged documents.
German police seized 543 bitcoins (about 23 million euros) and Hydra Market's servers. The forum is offline. The site is in Russian, but some infrastru... Read more
Okta CEO vows to “restore trust” after Lapsus$ hack
A vulnerability in a third party call center opened the company up to a data breach.
On Monday, Okta CEO Todd McKinnon gave an interview to Bloomberg Television in which he addressed the massive hack that the company suffered in January. McKinnon admitted that Okta doesn’t yet know how many of... Read more