Welcome to another Morning Bowl breakout:
The Week in Ransomware – February 3rd 2023 – Ending with a mess
While the week started slowly, it turned into a big ransomware mess, with attacks striking a big blow at businesses running VMware ESXi servers. […]
Read more….
Instant Checkmate – 11,943,887 breached accounts
In 2019, the public records search service Instant Checkmate suffered a data breach that later came to light in early 2023. The data included almost 12M unique customer email addresses, names, phone numbers and passwords stored as scrypt hashes.
Read more….
Bermuda hit by widespread internet outage amid power cut
Bermuda experienced a widespread power outage on Friday which impacted the island’s internet and phone services. Calling it a “serious incident” at BELCO, the Bermudian power supplier, the government has advised customers to “unplug all sensitive electrical equipment” as crews work around the clock on restoration efforts. […]
Read more….
Warning: Hackers Actively Exploiting Zero-Day in Fortra’s GoAnywhere MFT
A zero-day vulnerability affecting Fortra’s GoAnywhere MFT managed file transfer application is being actively exploited in the wild.
Details of the flaw were first publicly shared by security reporter Brian Krebs on Mastodon. No public advisory has been published by Fortra.
The vulnerability is a case of remote code injection that requires access to the administrative console of the application
Read more….
New Wave of Ransomware Attacks Exploiting VMware Bug to Target ESXi Servers
VMware ESXi hypervisors are the target of a new wave of attacks designed to deploy ransomware on compromised systems.
“These attack campaigns appear to exploit CVE-2021-21974, for which a patch has been available since February 23, 2021,” the Computer Emergency Response Team (CERT) of France said in an advisory on Friday.
VMware, in its own alert released at the time, described the issue as an
Read more….
Follow for more…
amoran.io 