Cyber Security Newsfeeds from around the world
VMware advisory warns users to patch critical issue in product. has released updates to resolve a remote code execution vulnerability in AirWatch Agent for Android and AirWatch Agent for Windows. The update resolves a flaw (CVE-2018-6968) in the real-t…
Continue ReadingVMware security updates published for its AirWatch Agent that affected by critical remote code execution vulnerability. VMware is a virtualization software which is installed on the physical server to allow for multiple virtual machines (VMs) to run on…
Continue ReadingResearchers have discovered two new Spectre/Meltdown variants – known as 3a and 4 – beyond the trio of speculative execution flaws that were first announced in January. See Also: True Business Costs & Risks in Underfunding Healthcare Cybersecurity As w…
Continue ReadingVMware informed customers on Monday that updates for its Fusion and Workstation products patch important denial-of-service (DoS) and privilege escalation vulnerabilities. According to VMware, Fusion 10.x on macOS is impacted by a signature bypass flaw …
Continue Readinga. Fusion signature bypass vulnerability. VMware Fusion contains a signature bypass vulnerability which may lead to a local privilege escalation. VMware would like to thank CodeColorist of AntFinancial LightYear Security Labs for reporting this issue t…
Continue ReadingExploit kit activity has been declining since the latter half of 2016, but the RIG EK seems to buck the trend. It’s been involved in ongoing activity involving a wide range of crimeware payloads; and the latest campaign saw RIG dropping the Grobios mal…
Continue ReadingAnybody who’s been involved with tech for a while has most likely come across the expression “RTFM” on more than one occasion. Usually delivered with a degree of snark, if not downright hostility, the initialism stand for “read the manual,” with an add…
Continue ReadingThe developers of several major operating systems and hypervisors misinterpreted documentation from Intel and introduced a potentially serious vulnerability to their products. According to an advisory published on Tuesday by CERT/CC, the flaw impacts t…
Continue ReadingMultiple operating system vendors issued coordinated patches this week to address a common vulnerability across their platforms, which was introduced thanks to widespread misinterpretation of Intel developer documentation. According to the CERT/CC team…
Continue ReadingWindows, macOS, Linux, VMware, Xen, KVM and others are affected by issues caused by their misinterpretation of chip documentation.
Most major operating systems are vulnerable to a “serious” security bug caused by developers’ misinterpretation of docum…
Continue Reading