Embattled VMware ESXi Hypervisor Flaw Exploitable in Myriad Ways

It's not just Internet-accessible hosts that are vulnerable, researchers say. [TechWeb]( Follow Dark Reading: [RSS]( February 14, 2023 LATEST SECURITY NEWS & COMMENTARY [Embattled VMware ESXi Hypervisor Flaw Exploitable in Myriad Ways]( It's not just Internet-accessible hosts that are vulnerable, researchers say. [Dark Web Revenue Down Dramatically After Hydra's Demise]( Competitor markets working to replace Hydra's money-laundering services for cybercriminals. [9 Scammers Busted for 5M Euro Phishing Fraud Ring]( The network is alleged to have operated 100 bank accounts and stolen millions from American people and companies. [Healthcare in the Crosshairs of North Korean Cyber Operations]( CISA, FBI, and South Korean intelligence agencies warn that the North Korean government is sponsoring ransomware attacks to fund its cyber-espionage activities. [Russian Hackers Disrupt NATO Earthquake Relief Operations]( Killnet claims DDoS attack against NATO Special Operations Headquarters, Strategic Airlift Capability, and more. [What Happened to #OpRussia?]( The cyberwar to attack Russia has never really stopped, despite a decreasing interest from the West. [(Sponsored Article) 4 Ways to Handle AI Decision-Making in Cybersecurity]( As evolving cyber threats force security teams to adopt AI to automate workflows, we ask how the relationship between humans and AI will pan out. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Addressing the Elephant in the Room: Getting Developers & Security Teams to Work Together]( Bridging the divide between developers and security can create a culture change organically. [Phishing Surges Ahead, as ChatGPT & AI Loom]( AI and phishing-as-a-service (PaaS) kits are making it easier for threat actors to create malicious email campaigns, which continue to target high-volume applications using popular brand names. [Name That Edge Toon: For the Birds]( Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. [MORE]( EDITORS' CHOICE [Reddit Hack Shows Limits of MFA, Strengths of Security Training]( A tailored spear-phishing attack successfully convinced a Reddit employee to hand over their credentials and their one-time password, but soon after, the same worker notified security. LATEST FROM THE EDGE [Why Some Cloud Services Vulnerabilities Are So Hard to Fix]( Five months after AWS customers were alerted about three vulnerabilities, nearly none had plugged the holes. The reasons why underline a need for change. LATEST FROM DR TECHNOLOGY [Building Up IAM in a Multicloud World]( In the cloud-first world, the security goal is to ensure only qualified users can access information across clouds. WEBINARS - [Ten Emerging Vulnerabilities Every Enterprise Should Know]( Every day, black hat attackers and white hat researchers are discovering new security vulnerabilities in widely-used systems and applications that might be exploited to compromise your data. Are you aware of the newest - and potentially most impactful - vulnerabilities ... - [The Ransomware Evolution: Protecting Against Professionalized Cybercriminal Operations]( Ransomware gangs are highly professional operations, with teams dedicated for customer service, help-desk, software development, distribution, and even marketing. There are marketplaces where attackers can easily pick up ransomware and attack infrastructure. Does your organization understand what kind of cybercriminal ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( - [State of Email Security]( - [Ransomware Resilience and Response: The Next-Generation]( - [Ransomware Is On The Rise]( - [State of Ransomware Readiness: Facing the Reality Gap]( [View More White Papers >>]( FEATURED REPORTS - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Accenture Acquires Morphus, Brazil-Based Cybersecurity Company]( [Integreon Launches Cyber Incident Response Offering with Development of AI-Based Review and Integration of RadarFirst]( [(ISC)² Makes Certified in Cybersecurity Exam Available in More Languages to Address Global Workforce Shortage]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The Promise and Reality of Cloud Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)