Posts

Cybersecurity Updates For Week 7 of 2022

Multiple vulnerabilities in VMware ESXi, Workstation, and Fusion were privately reported to VMware

Multiple vulnerabilities in VMware ESXi, Workstation, and Fusion were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products.

The individual vulnerabilities documented on this VMSA have severity Important/Moderate but combining these issues may result in higher severity, hence the severity of this VMSA is at severity level Critical.

Read more:
https://www.vmware.com/security/advisories/VMSA-2022-0004.html

Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites

Patches have been issued to contain a “severe” security vulnerability in UpdraftPlus, a WordPress plugin with over three million installations

Read more:
https://thehackernews.com/2022/02/critical-flaw-uncovered-in-wordpress.html

New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager

Multiple security vulnerabilities have been disclosed in Canonical’s Snap software packaging and deployment system, the most critical of which can be exploited to escalate privilege to gain root privileges.

Read More:
https://thehackernews.com/2022/02/new-linux-privilege-escalation-flaw.html

Other news worth mentioning:

Over 620 Million Ransomware Attacks Detected in 2021
Snyk Acquires Fugue, Enters Cloud Security Market
TRAEFIK UP TO 2.6.0 TLS CONFIGURATION HOST CERTIFICATE VALIDATION
Microsoft Teams Targeted With Takeover Trojans