Security News > 2023 > February > Week in review: VMware ESXi servers under attack, ChatGPT’s malicious potential, Reddit breached
Thousands of unpatched VMware ESXi servers hit by ransomware via old bugLate last week, unknown attackers launched a widespread ransomware attack hitting VMware ESXi hypervisors via CVE-2021-21974, an easily exploitable vulnerability that allows them to run exploit code remotely, without prior authentication.
Reddit breached: Internal docs, dashboards, systems accessedPopular social news website and forum Reddit has been breached and the attacker "Gained access to some internal docs, code, as well as some internal dashboards and business systems," but apparently not to primary production systems and user data.
Amazon S3 to apply security best practices for all new bucketsStarting in April 2023, Amazon S3 will change the default security configuration for all new S3 buckets.
Top 3 resolutions for security teamsIn this Help Net Security video, Kevin Garrett, Senior Solutions Engineer at Censys, recommends three critical elements all security teams need to add to their resolutions this year.
How CISOs can improve security practices to keep up with evolving technologiesIn this Help Net Security video, Rick McElroy, Principal Security Strategist at VMware, offers a perspective on these trends, including tips on how consumers and organizations can bolster their security practices to keep up with evolving technologies.
New infosec products of the week: February 10, 2023Here's a look at the most interesting products from the past week, featuring releases from Cequence Security, Deepwatch, Neustar Security Services, OPSWAT, and SecuriThings.
News URL
Related news
- Critical RCE bug in VMware vCenter Server now exploited in attacks (source)
- Week in review: Fortinet patches critical FortiManager 0-day, VMware fixes vCenter Server RCE (source)
- New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems (source)
- PyPI Attack: ChatGPT, Claude Impersonators Deliver JarkaStealer via Python Libraries (source)
- New NachoVPN attack uses rogue VPN servers to install malicious updates (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-02-24 | CVE-2021-21974 | Out-of-bounds Write vulnerability in VMWare Cloud Foundation and Esxi OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. | 8.8 |