Blog

Linux kernel vulnerability CVE-2021-3489 Security Advisory Security Advisory Description The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size ... More info: https://support.f5.com/csp/article/K32525759?utm_source=f5support&utm_medium=RSS

Behavioral Summary LockBit 3.0 seems to love the spotlight. Also known as LockBit Black, this ransomware family announced itself in July 2022 stating that it would now offer the data of its nonpaying victims online in a freely available easy-to-use searchable form. Then in July, it introduced a bug bounty program to find defects in … ContinuedThe post LockBit 3.0 Also Known as LockBit Black appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/lockbit-3-0-also-known-as-lockbit-black.html?utm_source=rss&utm_medium=rss&utm_campaign=lockbit-3-0-also-known-as-lockbit-black

In celebration of this year’s Cybersecurity Awareness Month theme – See Yourself in Cyber – we are spotlighting five VMware security pros to ask them five questions about their career path. Dr. Amelia Estwick is director of threat research at VMware. Based in Washington, D.C. Dr. Estwick is a seasoned cybersecurity professional with over 20 … ContinuedThe post See Yourself in Cyber: 5 Questions with Amelia Estwick appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/see-yourself-in-cyber-5-questions-with-amelia-estwick.html?utm_source=rss&utm_medium=rss&utm_campaign=see-yourself-in-cyber-5-questions-with-amelia-estwick

The Value of Image Scanning Scanning container images for vulnerabilities and misconfigurations is one of the best ways to reduce risk and exploitability. Vulnerable images and misconfigurations pose a great threat to the entire security of your application. While it is critical to scan the CI/CD pipeline, monitoring the image posture in a dynamic environment … ContinuedThe post Announcing Tanzu Application Platform and VMware Carbon Black Container Integration appeared first on VMware More info: https://blogs.vmware.com/security/2022/10/announcing-tanzu-application-platform-and-vmware-carbon-black-container-integration.html?utm_source=rss&utm_medium=rss&utm_campaign=announcing-tanzu-application-platform-and-vmware-carbon-black-container-integration

In celebration of this year’s Cybersecurity Awareness Month theme – See Yourself in Cyber – we are spotlighting five VMware security pros to ask them five questions about their career path. Stefano Ortolani is a staff engineer 2 and threat research lead at VMware. In his current role, Stefano focuses on finding novel approaches to … ContinuedThe post See Yourself in Cyber: 5 Questions with Stefano Ortolani appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/see-yourself-in-cyber-5-questions-with-stefano-ortolani.html?utm_source=rss&utm_medium=rss&utm_campaign=see-yourself-in-cyber-5-questions-with-stefano-ortolani

Linux kernel vulnerability CVE-2021-3491 Security Advisory Security Advisory Description The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_ ... More info: https://support.f5.com/csp/article/K84602160?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-41073 Security Advisory Security Advisory Description loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain ... More info: https://support.f5.com/csp/article/K43040412?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-38300 Security Advisory Security Advisory Description arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when ... More info: https://support.f5.com/csp/article/K49440205?utm_source=f5support&utm_medium=RSS

We’re taking our show on the road and bringing VMware NSX Security to a city near you. These free events are your opportunities to see how VMware innovations in network security can help you effectively detect, prevent, and remediate ransomware and other advanced threats, and have a little bit of extra fun while you’re at … ContinuedThe post The NSX Network Security Roadshow – Coming to a City Near You appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/the-nsx-network-security-roadshow-coming-to-a-city-near-you.html?utm_source=rss&utm_medium=rss&utm_campaign=the-nsx-network-security-roadshow-coming-to-a-city-near-you

Emotet is one of the most evasive and destructive malware delivery systems ever deployed. Now it has resurrected itself following a takedown by law enforcement in 2021. It is the very definition of an advanced persistent threat, causing substantial damage during its earlier reign and continuing to pose a danger to organizations everywhere. The VMware … ContinuedThe post Emotet Exposed: A Look Inside the Cybercriminal Supply Chain appeared first on VMware Security Blog. More info: https://blogs.vmware.com/security/2022/10/emotet-exposed-a-look-inside-the-cybercriminal-supply-chain.html?utm_source=rss&utm_medium=rss&utm_campaign=emotet-exposed-a-look-inside-the-cybercriminal-supply-chain