RSS_Virtulization

VMware Cloud on AWS has been helping customers with their cloud migration journey for the past 3+ years. It delivers a seamlessly integrated hybrid cloud solution that extends on-premises vSphere environments to a VMware SDDC running on Amazon Elastic Compute Cloud (Amazon EC2) elastic, bare-metal infrastructure that is fully integrated as part of AWS. And once in the cloud, customers can start their modernization journey with minimal disruption to their business. In the past Cloud…

Two teenage girls who went missing from the same North Carolina county used school-issued laptops to communicate with their alleged abductors.  Savannah Grace Childress vanished on February 11 from her home on Canaan Church Road in Denton. The 14-year-old was found alive ten days later in Arkansas.  Law enforcement officers investigating Childress’ disappearance discovered that the teen had been using a computer given to her by Davidson County Schools to chat with multiple people on various online platforms. …

The Javascript-based infection framework for the Gootkit RAT was enhanced to deliver a wider variety of malware, including ransomware. Experts from Sophos documented the evolution of the “Gootloader,” the framework used for delivering the Gootkit RAT banking Trojan. The framework was improved to deploy a wider range of malware, including ransomware payloads. “In recent years, almost as much effort has gone into improvement of its delivery method as has gone into the NodeJS-based malware itself.” reads…

A dispute over wages could see workers at Canada’s equivalent of the United States’ National Security Agency stage a strike.  The Public Service Alliance of Canada (PSAC), which represents 2,400 employees working in cryptography, applied mathematics, advanced language analysis, and cybersecurity at the Communications Security Establishment (CSE), voted last week to authorize a strike following a disagreement about changes to a wage supplement.  The supplement—known as the market allowance—was put in place to make employees’…

American cybersecurity firm Rapid7 has opened a new office in the heart of Northern Ireland’s capital city. The company, which is headquartered in Boston, Massachusetts, serves over 9,100 customers through 14 different offices around the world.   Rapid7’s newest digs, located in Belfast’s Chichester House, can accommodate up to 400 employees. The company said the major expansion will create up to 150 new jobs and internships in customer support, engineering, and development. New employees will have access to…

Microsoft has highlighted the increasingly sophisticated cyber-threat landscape, particularly as a result of the rise in nation state attacks. During a session at the Microsoft Ignite event, the company outlined some of the trends it is seeing and actions it is taking to help mitigate them. There has been marked rise in cyber-attacks detected by Microsoft over recent years, both from cyber-criminals and nation state actors, with the latter becoming a particular cause for concern. Tom…

A US telemarketing company has leaked the personal details of potentially tens of thousands of consumers after misconfiguring a cloud storage bucket, Infosecurity can reveal. A team at vpnMentor led by Noam Rotem found the unsecured AWS S3 bucket on December 24 last year. It was traced to Californian business CallX, whose analytics services are apparently used by clients to improve their media buying and inbound marketing. According to its website, the firm counts lending…

A security vendor discovered nearly 1.5 billion breached log-in combos circulating online last year and billions more pieces of personal information (PII), with password reuse and weak hashing algorithms commonplace. SpyCloud’s 2021 Credential Exposure Report was compiled from the vendor’s human intelligence efforts to recover stolen data from criminal networks early in the breach lifecycle. Some 854 breach incidents, up a third from 2019, leaked on average 5.4 million records each. Poor password security is still rife:…

Observability has become a very hot topic in the world of application development and IT operations but understanding what it is and how you can effectively leverage it to support modern apps is also important to anyone with responsibilities in the area of cloud architecture.  On our latest multi-cloud podcast, Eric Nielsen (@ericnpro) and I (@davidj7494) speak with Harmen Vanderlinde [BIO] about a new framework for achieving observability that he and his team have been…

Microsoft has been forced to release out-of-band patches to fix multiple zero-day vulnerabilities being exploited by Chinese state-backed threat actors. The unusual step was taken to protect customers running on-premises versions of Microsoft Exchange Server. “In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to email accounts, and allowed installation of additional malware to facilitate long-term access to victim environments,” Microsoft said. “Microsoft Threat Intelligence Center…