darkreading.com 
The Agenda ransomware group has been ramping up infections worldwide, thanks to a new and improved variant of its virtual machine-focused ransomware. Agenda (aka Qilin and Water Galura) was first spotted in 2022. Its first, Golang-based ransomware was used against an indiscriminate range of targets: in healthcare, manufacturing, and education, from Canada to Colombia and … Read more
Attackers have compromised more than 8,000 subdomains from well-known brands and institutions to mount a sprawling phishing campaign that sends malicious emails numbering in the millions each day. MSN, VMware, McAfee, The Economist, Cornell University, CBS, Marvel, and eBay are among the entities caught up in “SubdoMailing” — named by researchers from Guardio Labs who … Read more
VMware is urging network administrators to remove an out-of-date plug-in for its VSphere, which has two flaws — one of them critical — that can allow attackers with access to a Windows client system to hijack cloud computing sessions. VMware this week released a security advisory addressing the flaws — one tracked as CVE-2024-22245, with … Read more
One of the most serious VMware vulnerabilities in recent memory was secretly being exploited by a Chinese advanced persistent threat (APT) for years before a patch became available. It was all-hands-on-deck in October when news first broke of CVE-2023-34048, a 9.8 out of 10 “critical” CVSS-rated out-of-bounds write vulnerability affecting vCenter Server, VMware’s centralized platform … Read more