CVE-2021-20454 – Alert Detail – Security Database

It’s now being called “the single biggest global ransomware attack on record,” with thousands of victims in at least 17 different countries breached with ransomware Friday, reports the Associated Press, citing new details provided by cybersecurity researchers. An affiliate of the Russia-linked gang REvil deployed the ransomware “largely through firms that remotely manage IT infrastructure…

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company’s IT Team Was Unaware the VPN Exploited to Gain Entry Existed Doug Olenick (DougOlenick) • June 8, 2021     Colonial Pipeline Co. CEO Joseph Blount testifying on Tuesday before the Senate Homeland Security and Governmental Affairs Committee Colonial Pipeline Co. CEO Joseph Blount defended his…

Global systems integrator Wipro has acquired Melbourne-based managed services provider Ampion for an undisclosed sum. Based in Melbourne, Ampion specialises in cyber security, DevOps and quality engineering services. The company was formed last year following the merger of MSPs Revolution IT and Shelde. Wipro said adding Ampion’s offerings in engineering transformation, DevOps and security consulting…

Malicious actors are actively mass scanning the internet for vulnerable VMware vCenter servers that are unpatched against a critical remote code execution flaw, which the company addressed late last month.The ongoing activity was detected by Bad Packets on June 3 and corroborated yesterday by security researcher Kevin Beaumont. “Mass scanning activity detected from 104.40.252.159 checking for

The US Managed Service Provider CompuCom Confirms Ongoing Outage Following Malware Incident | IT Security News Sponsors Endpoint Cybersecurity www.endpoint-cybersecurity.com – Consulting in building your security products– Employee awareness training– Security tests for applications and pentesting… and more. Daily Summary Patreon Categories CategoriesSelect Category(ISC)2 Blog  (323)(ISC)2 Blog infosec  (13)(ISC)² Blog  (320)2020-12-08 – Files for an ISC diary (recent…

The vSphere Client (HTML5) contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue by sending a POST request to vCenter Server plugin leading to information disclosure.