ESXiArgs ransomware targets VMware ESXi virtualisation systems – usually used by larger companies, data centres, cloud providers etc, but we have used this software in the past – and exploits a vulnerability that was patched by VMware two years ago. However it appears not everyone has applied the patches. Thousands of …
Why the rich and famous get scammed and also aid the scammers
Here is very interesting short read over on the The Conversation, by Yaniv Hanoch, Professor in Decision Science, University of Southampton and Stacey WoodProfessor of Psychology, Scripps College, looking t scams and scammers. They are particularly interested in how the famous and the influencers unintentionally support and endorse the scammers. …
Continue reading “Why the rich and famous get scammed and also aid the scammers”
Google ads malvertising campaign evades anti-virus detection
Data stealing malware, pushed through compromised Google search ads, is attempting to evade detection by using virtualisation components: Google ads push ‘virtualized’ malware made for antivirus evasion (bleepingcomputer.com) Researchers think this new type of attack strategy and other emerging attack vectors are being prompted s as reaction to Microsoft tightening …
Continue reading “Google ads malvertising campaign evades anti-virus detection”
CISA had a busy day yesterday
I regularly check the The US government Cybersecurity and Infrastructure Security Agency (CISA) site s it is a good source for patch and vulnerability alerts. Yesterday they posted security advisories for a range of products including Cisco, Drupal, and VMware: Cisco Releases Security Advisories for Multiple Products | CISA Drupal …
