Source: VMware Releases Security Update for Tools | CISA VMware has released a security update to address a vulnerability in VMware Tools. A cyber threat actor can exploit this vulnerability to obtain sensitive information. CISA encourages users and administrators to review VMware Security Advisory VMSA-2023-0019 and apply the necessary update.
Source: https://techcrunch.com/2023/08/14/millions-americans-health-data-moveit-hackers-clop-ibm/ Millions of Americans had their sensitive medical and health information stolen after hackers exploited a zero-day vulnerability in the widely used MOVEit file transfer software raided systems operated by tech giant IBM. The Colorado Department of Health Care Policy and Financing (HCPF), which is responsible for administering Colorado’s Medicaid program, confirmed on Friday that it …
A senior research scientist at Google has devised new CPU attacks to exploit a vulnerability dubbed Downfall that affects multiple Intel microprocessor families and allows stealing passwords, encryption keys, and private data like emails, messages, or banking info from users that share the same computer. Source: https://www.bleepingcomputer.com/news/security/new-downfall-attacks-on-intel-cpus-steal-encryption-keys-data/ Reference: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00828.html
The operators associated with the QakBot (aka QBot) malware have set up 15 new command-and-control (C2) servers as of late June 2023. Source: QakBot Malware Operators Expand C2 Network with 15 New Servers (thehackernews.com)
The threat actor is targeting organizations in Bulgaria, China, Vietnam, and various English-speaking nations. Source: https://www.darkreading.com/threat-intelligence/custom-yashma-ransomware-crashes-into-the-scene