Month: octubre 2022

In celebration of this year’s Cybersecurity Awareness Month theme – See Yourself in Cyber – we are spotlighting five VMware security pros to ask them five questions about their career path. Dr. Amelia Estwick is director of threat research at VMware. Based in Washington, D.C. Dr. Estwick is a seasoned cybersecurity professional with over 20 … ContinuedThe post See Yourself in Cyber: 5 Questions with Amelia Estwick appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/see-yourself-in-cyber-5-questions-with-amelia-estwick.html?utm_source=rss&utm_medium=rss&utm_campaign=see-yourself-in-cyber-5-questions-with-amelia-estwick

The Value of Image Scanning Scanning container images for vulnerabilities and misconfigurations is one of the best ways to reduce risk and exploitability. Vulnerable images and misconfigurations pose a great threat to the entire security of your application. While it is critical to scan the CI/CD pipeline, monitoring the image posture in a dynamic environment … ContinuedThe post Announcing Tanzu Application Platform and VMware Carbon Black Container Integration appeared first on VMware More info: https://blogs.vmware.com/security/2022/10/announcing-tanzu-application-platform-and-vmware-carbon-black-container-integration.html?utm_source=rss&utm_medium=rss&utm_campaign=announcing-tanzu-application-platform-and-vmware-carbon-black-container-integration

In celebration of this year’s Cybersecurity Awareness Month theme – See Yourself in Cyber – we are spotlighting five VMware security pros to ask them five questions about their career path. Stefano Ortolani is a staff engineer 2 and threat research lead at VMware. In his current role, Stefano focuses on finding novel approaches to … ContinuedThe post See Yourself in Cyber: 5 Questions with Stefano Ortolani appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/see-yourself-in-cyber-5-questions-with-stefano-ortolani.html?utm_source=rss&utm_medium=rss&utm_campaign=see-yourself-in-cyber-5-questions-with-stefano-ortolani

Linux kernel vulnerability CVE-2021-3491 Security Advisory Security Advisory Description The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_ ... More info: https://support.f5.com/csp/article/K84602160?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-41073 Security Advisory Security Advisory Description loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain ... More info: https://support.f5.com/csp/article/K43040412?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-38300 Security Advisory Security Advisory Description arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when ... More info: https://support.f5.com/csp/article/K49440205?utm_source=f5support&utm_medium=RSS

We’re taking our show on the road and bringing VMware NSX Security to a city near you. These free events are your opportunities to see how VMware innovations in network security can help you effectively detect, prevent, and remediate ransomware and other advanced threats, and have a little bit of extra fun while you’re at … ContinuedThe post The NSX Network Security Roadshow – Coming to a City Near You appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/the-nsx-network-security-roadshow-coming-to-a-city-near-you.html?utm_source=rss&utm_medium=rss&utm_campaign=the-nsx-network-security-roadshow-coming-to-a-city-near-you

Emotet is one of the most evasive and destructive malware delivery systems ever deployed. Now it has resurrected itself following a takedown by law enforcement in 2021. It is the very definition of an advanced persistent threat, causing substantial damage during its earlier reign and continuing to pose a danger to organizations everywhere. The VMware … ContinuedThe post Emotet Exposed: A Look Inside the Cybercriminal Supply Chain appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/emotet-exposed-a-look-inside-the-cybercriminal-supply-chain.html?utm_source=rss&utm_medium=rss&utm_campaign=emotet-exposed-a-look-inside-the-cybercriminal-supply-chain

Ask most developers to explain how to create an API, and they’ll probably give you an answer that focuses on writing a specification and/or implementation. That answer wouldn’t be wrong, exactly. Specifications and implementations are certainly among the core components of APIs. However, designing and implementing modern APIs requires attention to much more than these … ContinuedThe post Key Requirements of Modern APIs for an End-to-end API Lifecycle Implementation appeared More info: https://blogs.vmware.com/security/2022/10/key-requirements-of-modern-apis-for-an-end-to-end-api-lifecycle-implementation.html?utm_source=rss&utm_medium=rss&utm_campaign=key-requirements-of-modern-apis-for-an-end-to-end-api-lifecycle-implementation

Between Log4j, geopolitical tension, and ransomware hitting hospitals and major school districts, it’s more evident than ever before that cybersecurity is no longer just a focus for defenders, but for society at large. As a proud Champion of Cybersecurity Awareness Month, VMware is raising awareness of emerging threats while providing best practices for security teams … ContinuedThe post Cybersecurity Awareness Month: Amid an Evolving Threat Landscape, Defenders Continue to Weather More info: https://blogs.vmware.com/security/2022/10/cybersecurity-awareness-month-amid-an-evolving-threat-landscape-defenders-continue-to-weather-the-storm.html?utm_source=rss&utm_medium=rss&utm_campaign=cybersecurity-awareness-month-amid-an-evolving-threat-landscape-defenders-continue-to-weather-the-storm