[ad_1] Threat actors have begun massively exploiting the critical vulnerability tracked as CVE-2022-1388, which affects multiple versions of all F5 BIG-IP modules, to launch malicious payloads. Last week, F5 released patches for the security issue (severity rating 9.8), which affects the BIG-IP iControl REST authentication component. The company warned that the vulnerability allows an unauthenticated … Read more
[ad_1] A recently discovered and rare Advanced Persistent Threat (APT) group is breaching corporate networks to steal Exchange emails (on-premises and online) from employees involved in corporate transactions such as mergers and acquisitions. Mandiant researchers, who discovered the threat actor and are now tracking him as UNC3524they say the group has demonstrated its “advanced” capabilities … Read more
[ad_1] Advanced hackers are actively exploiting a critical remote code execution (RCE) vulnerability, CVE-2022-22954, affecting VMware Workspace ONE Access (formerly called VMware Identity Manager). The issue was fixed in a security update 20 days ago along with two more RCEs: CVE-2022-22957 and CVE-2022-22958 also affecting VMware Identity Manager (vIDM), VMware vRealize Automation (vRA), VMware Cloud … Read more