Security News

Zettaset announced that XCrypt Kubernetes Encryption is available on the VMware Marketplace. VMware Marketplace enables customers to discover and deploy compatible, validated third-party solutions to VMware environments.

Pling presents itself as a marketplace for creative folk to upload Linux desktop themes and graphics, among other things, in the hope of making a few quid from supporters. It comes in two parts: code needed to run your own bling bazaar, and an Electron-based app users can install to manage their themes from a Pling souk.

Linux marketplaces that are based on the Pling platform are impacted by a cross-site scripting vulnerability and potentially exposed to supply chain attacks, according to German cybersecurity consultancy Positive Security. Positive Security co-founder Fabian Bräunlein discovered that all Pling-based marketplaces are impacted by a wormable XSS that potentially opens the door for supply chain attacks.

An unpatched stored cross-site-scripting security vulnerability affecting Linux marketplaces could allow unchecked, wormable supply-chain attacks, researchers have found. To boot, the PlingStore application is affected by an unpatched remote code-execution vulnerability, which researchers said can be triggered from any website while the app is running - allowing for drive-by attacks.

The Marketo data theft marketplace is applying maximum pressure on victims by emailing their competitors and offering sample packs of the stolen data. The data sold on these sites are obtained through the marketplace's own attacks, from other threat actors, or by collecting data released in other attacks, such as ransomware or website data breaches.

Ingram Micro Cloud announced its new Marketplace-as-a-Service model to help reseller partners fully automate and scale the next step of their cloud businesses. The offering enables Ingram Micro Cloud channel reseller partners to launch their very own cloud marketplace and grow with streamlined cloud subscription management and billing, helping provide an accelerated path to commercialize and sell their products and services.

Law enforcement agencies in the United States, Germany, the Netherlands, and Romania have taken down the stolen login credentials marketplace Slilpp, the U.S. Department of Justice announced on Thursday. Active since 2012, the crime shop has been selling stolen credentials associated with a variety of online accounts, including banking, payment, and retail accounts, among others.

The U.S. Department of Justice Thursday said it disrupted and took down the infrastructure of an underground marketplace known as "Slilpp" that specialized in trading stolen login credentials as part of an international law enforcement operation. Over a dozen individuals have been charged or arrested in connection with the illegal marketplace.

Privacera announced that its managed SaaS data access governance solution, PrivaceraCloud, is now available in the AWS Marketplace. PrivaceraCloud works with AWS to help enterprises globally accelerate secure cloud data migration from on-premises Hadoop environments to AWS and other leading public cloud providers, while remaining compliant with stringent industry and privacy regulations, such as GDPR, LGPD, CCPA, HIPAA, and more.

Protegrity announced the availability of three Protegrity products in AWS Marketplace: Protegrity Discover, Cloud Protect for Amazon Redshift, and Cloud Protect for Snowflake. With AWS Marketplace availability, Protegrity is making it easier than ever for customers to discover and protect their sensitive data in the cloud.