Categoria: Vulnerabilities

VMware NSX Data Center Flaw Can Expose Virtual Systems to Attacks

Details of Recently Patched VMware NSX Vulnerability Disclosed

VMware this week announced the availability of a patch for a high-severity vulnerability affecting the NSX Data Center for vSphere network virtualization product.

Intel Software and Firmware Updates Patch 18 High-Severity Vulnerabilities

Intel has released software and firmware updates to address many vulnerabilities found in the company’s products.

The chipmaker last week released 22 security advisories, including seven that have an overall severity rating of “high.”

Malicious Emails Can Crash Cisco Email Security Appliances

Cisco this week informed customers that its Email Security Appliance (ESA) product is affected by a high-severity denial of service (DoS) vulnerability that can be exploited using specially crafted emails.

Hackers Had Access to Red Cross Network for 70 Days

One month after disclosing a data breach that affected roughly 515,000 people, the International Committee of the Red Cross (ICRC) announced that the hackers had access to its network for 70 days before the attack was discovered.

Bot Detection Firm Netacea Closes $12 Million Funding Round

Early-stage bot detection and mitigation company Netacea has closed a $12 million (£9 million) Series A investment to build out its anti-fraud technology platform.

The investment was led by Mercia Asset Management, with participation from a wide range of private investors with experience in the cybersecurity industry.

High-Severity Vulnerability Found in Apache Database System Used by Major Firms

Researchers detail code execution vulnerability in Apache Cassandra

CISA Urges Organizations to Patch Recent Chrome, Magento Zero-Days

The United States Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday announced that it has expanded its Known Exploited Vulnerabilities Catalog with nine more security flaws, including two recently addressed zero-days.

Google Offering $91,000 Rewards for Linux Kernel, GKE Zero-Days

Technology giant Google is offering bigger cash awards for hackers reporting critical security flaws affecting the Linux Kernel, GKE, Kubernetes, and kCTF.

VMware Patches Vulnerabilities Reported by Researchers to Chinese Government

VMware vulnerabilities disclosed at China’s Tianfu Cup hacking contest were also reported to Chinese government

VMware on Tuesday announced that it has patched several high-severity vulnerabilities that were disclosed last year at a major Chinese hacking contest.

QNAP Extends Security Updates for Some EOL Devices

Taiwan-based NAS and NVR solutions manufacturer QNAP Systems on Monday announced that it is extending the security update window for some devices that have reached end-of-life (EOL) status.

QNAP typically provides security updates for four years after a product has reached EOL status.