Security News

Broadcom has delivered on its 2023 teaser of integration between VMware's SD-WAN and Symantec's Security Service Edge, by today debuting the "VMware VeloCloud SASE, Secured by Symantec" at Mobile World Congress in Barcelona. The Symantec Security Service Edge is already classified as a SASE, or Secure Access Service Edge - a term coined by analyst firm Gartner, which defines it as a "Converged network and security as a service capabilities, including software-defined WAN, secure web gateway, cloud access security broker, next-generation firewall, and zero trust network access." VMware also offered its own SASE, but that offering was tuned to the needs of its Workspace ONE end user compute suite.

A former Broadcom engineer who pleaded guilty to stealing his ex-employer's trade secrets has asked the court not to give him prison time, saying he stole the files for reference, fearing he would "Be unable to keep up" with "More technical and younger engineers" at a new startup. According to the filing, Peter Kisang Kim worked for Broadcom for 22 years before he accepted a job in 2020 at a Chinese networking chip design startup called Mersenne Technologies, where his role was design verification director.

That's why tons of organizations entrust endpoint protection software to keep their networks secure across each of their platform devices. Endpoint protection is essential as it protects networks from security threats occurring within vulnerable endpoints.

Trend Micro Endpoint Encryption and Broadcom Symantec Endpoint Encryption are two of the leading options. Both Trend Micro Endpoint Encryption and Broadcom Symantec Endpoint Encryption protect a wide range of devices typically used by businesses, ranging from Mac and PC laptops and desktops to removable media devices.

A federal grand jury has charged a former Broadcom engineer with stealing trade secrets and using them while working at a new employer - a Chinese chip start-up. Kim allegedly lifted the trade secrets from one of Broadcom's employee-only repositories as he prepared to leave the company in July of 2020.

The new ransomware family, called Yanluowang, appears to still be under development and lacks some sophisticated features found in similar code. The Symantec Threat Hunter Team at Broadcom Software has discovered what appears to be a brand new family of ransomware named after the Chinese deity that judges the souls of the dead. Yanluowang is the perfect ransomware for the Halloween season, though this particular malevolent digital spirit lacks the subtlety and sophistication of some of its more established brethren.

Symantec customers, or rather Broadcom customers these days, were taken offline for a while on Wednesday when the security service's data centers around the planet went down. The Web Security Service platform, acquired when Broadcom hoovered much of Symantec's operations last year, sells web-based site and file scanning for businesses.

AT&T, Palo Alto Networks and Broadcom have been developing a framework that enables organizations to deploy firewalls as software-based platforms instead of hardware appliances. The expansion, which should provide necessary protections on 5G networks, delivers a dynamically programmable basis with embedded security at the edge of the network and also allows for the deployment of future services.

A vulnerability in Broadcom's cable modem firmware can open unknown millions of broadband modems by various manufacturers to attackers, a group of Danish researchers has warned. CVE-2019-19494, also dubbed Cable Haunt, is present in the spectrum analyzer, a standard component of Broadcom chips that identifies potential problems with the connection through the modem's coaxial cable.

A vulnerability in Broadcom's cable modem firmware has left as many as 200 million home broadband gateways in Europe, and potentially more worldwide, at risk of remote hijackings. The end result, the team says, is that crooks can remotely take over vulnerable Broadcom-based cable modems without netizens or ISPs realizing; the victim simply has to surf to a dodgy website, or similar.