Virtualization technology giant VMware joined the Patch Tuesday train this week to deliver urgent security patches to its VMWare Workspace One product.
Gaping Authentication Bypass Holes in VMWare Workspace One
Microsoft Scrambles to Thwart New Zero-Day Attacks
The zero-day attacks against Microsoft’s software products are showing no signs of slowing down.
Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge
The world’s largest software maker is warning that China-based nation state threat actors are taking advantage of a one-year-old law to “stockpile” zero-days for use in sustained malware attacks.
Binary Defense Raises $36 Million for MDR Platform
Managed detection and response provider Binary Defense this week announced it has raised $36 million in its first funding round, which was led by Invictus Growth Partners. Previously, Binary Defense was bootstrapped.
Founded in 2014, the Stow, Ohio-based firm helps organizations monitor, detect, and respond to cyberattacks in real time.
Red Cross Seeks ‘Digital Emblem’ to Protect Against Hacking
The International Committee of the Red Cross said Thursday it is seeking support to create a “digital red cross/red crescent emblem” that would make clear to military and other hackers that they have entered the computer systems of medical facilities or Red Cross offices.
US Agencies Issue Guidance on Responding to DDoS Attacks
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have released joint guidance for responding to distributed denial-of-service (DDoS) attacks.
Versa Networks Raises $120 Million in Pre-IPO Funding Round
Secure access service edge (SASE) solutions provider Versa Networks announced on Thursday that it has raised $120 million in a pre-IPO funding round.
Apple Fixes Exploited Zero-Day With iOS 16.1 Patch
Apple on Monday shipped a major iOS update with fixes at least 20 documented security defects, including a kernel flaw that’s already being actively exploited in the wild.
Network Security Company Corsa Security Raises $10 Million
Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50 million.
Password Report: Honeypot Data Shows Bot Attack Trends Against RDP, SSH
An analysis of data collected by Rapid7’s RDP and SSH honeypots between September 10, 2021, and September 9, 2022, found tens of millions of connection attempts. The honeypots captured 215,894 unique IP source addresses and 512,002 unique passwords across RDP and SSH honeypots. Almost all the passwords (99.997%) can be found in rockyou2021.txt.
