RSS_Virtulization

Researchers at Positive Technologies have published a proof-of-concept exploit for CVE-2020-3580. There are reports of researchers pursuing bug bounties using this exploit. Background On October 21, 2021, Cisco released a security advisory and patches to address multiple cross-site scripting (XSS) vulnerabilities in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software web services. In April, Cisco updated the advisory to account for an incomplete fix of CVE-2020-3581. On June 24, Positive Technologies tweeted…

Personal information belonging to job seekers residing in the Mountain State may have been exposed during a security incident at WorkForce West Virginia. The breach was confirmed yesterday by West Virginia governor Jim Justice, who addressed the incident during a press conference held earlier today.  WorkForce has begun sending notification letters to individuals whose personal data was compromised. The letters state that WorkForce learned on April 13 that an unauthorized individual had accessed a job-seekers database. The unknown cyber-criminal may…

Jack Wallen shows you just how easy it is to join an existing AlmaLinux server to an Active Directory domain via a web-based GUI. Image: Jack Wallen If you’ve begun deploying AlmaLinux into your data center or your cloud-hosted services, you might have a reason to join those servers to your existing Active Directory domain. At first blush, you might think that process is a drawn-out exercise in command-line marathons. It’s not. Believe it or…

  From 24 June to 26 July 2021, PCI SSC stakeholders are invited to review and provide feedback on the draft PCI PIN Transaction Security (PTS) Hardware Security Module (HSM) Modular Security Requirements during a 30 day request for comments (RFC) period. The RFC will be available to primary contacts through the PCI SSC portal, including instructions on how to access the document and submit feedback. Eligible stakeholders will also receive instructions via email. As a…

A linguist employed by the US Department of Defense has been sent to prison for more than two decades for leaking the identities of American spies to a lover with ties to a foreign terrorist organization. Mariam Taha Thompson was charged in March 2020 with sharing highly sensitive classified national defense information with a Lebanese national connected to Hizballah.  A year later, the 62-year-old former resident of Rochester, Minnesota, pleaded guilty to placing American spies and US military personnel…

Google Chrome users will have to wait until at least 2023 before third party cookies are blocked as part of the browser’s Privacy Sandbox initiative. Google had first disclosed its plans to block third party cookies, which advertisers and marketers use to track users, in August 2019. In January 2020, Google provided more details on the Privacy Sandbox effort with the company stating that it intended to have the cookie blocking technology in place within…

Last month, the Cloud Native Computing Foundation (CNCF) Security Technical Advisory Group published a detailed document about Software Supply Chain Best Practices. You can get the full document from their GitHub repo. This was the result of months of work from a large team, with special thanks to Jonathan Meadows and Emily Fox. As one of the CNCF reviewers I had the pleasure of reading several iterations and seeing it take shape and improve over…

Dubbed ChaChi by researchers at BlackBerry, the RAT has recently shifted its focus from government agencies to schools in the US. Image: IvonneW, Getty Images/iStockPhoto A Remote Access Trojan is targeting schools and universities with ransomware attacks. Christened ChaChi by the BlackBerry Threat Research and Intelligence SPEAR team, the RAT is being used by operators of the PYSA ransomware, according to a report released by BlackBerry on Wednesday. Specifically, ChaChi has been discovered in data…

Scammers are on pace to steal nearly $1 million USD from unsuspecting users through a popular decentralized finance protocol, Uniswap, by abusing YouTube to promote a fake SpaceX coin as part of ads appearing before and during cryptocurrency videos. Background In early May, scammers compromised Twitter and YouTube accounts to promote a series of cryptocurrency scams ahead of Tesla and SpaceX founder Elon Musk’s appearance on Saturday Night Live, stealing over $10 million dollars in…

Ransomware attacks fell by 50% in Q1 2021 as threat actors shifted from using mass spread campaigns to focusing on fewer, larger targets with unique samples, according to the McAfee Threats Report: June 2021. The researchers noted that the traditional approach of using one form of ransomware to infect and extort payments from many victims is becoming less prominent, mainly because the targeted systems can recognize and block such attempts over time. Instead, they see…