A week in security (May 16 – 22)

The most important and interesting computer security stories from the last seven days.

Read more

[updated]VMWare vulnerabilities are actively being exploited, CISA warns

CISA has issued severe warnings about disclosed vulnerabilities in VMWare products that are actively being exploited, probably by APT threat actors.

Read more

[updated] Patch now! Microsoft plugs actively exploited zero-days and other updates

Another Patch Tuesday has come around, and while it may seem as a calm one for a change, there is enough to patch and update.

Read more

Patch vCenter Server “right now”, VMWare expects CVE-2021-22005 exploitation within minutes of disclosure

CVE-2021-22005 has a CVSS score of 9.8 and should be treated as an “emergency change”, according to VMWare.

Read more

A Look at Malware with Virtual Machine Detection

What you can do against malware with Virtual Machine detection.

Read more

Anonymizing Traffic for your VM And Capturing Traffic

Security Level: High / Hardcore Purpose: To hide who you are while performing research through your browser AND protecting your host system from drive-by download attacks AND being able to perform dynamic malware analysis and capture malicious traffic moving between the malware and the C&C. (Whew, that’s a lot of ANDs. =D) Benefits: Hide your…

Read more

Anonymizing Traffic For Your VM

Security Level: Medium Purpose: To hide who you are while performing research through your browser AND protecting your host system from drive-by download attacks. Benefits: Hide your IP Protect the host system by running in a virtual environment Execute malware in a safe environment (non-traffic capture) Drawbacks: Not as easy to setup Need to gather…

Read more

Select your language