Salt Bugs Allow Full RCE as Root on Cloud Servers
Researchers say the bugs are easy to exploit and will likely be weaponized within a day. Continue reading Salt Bugs Allow Full RCE as Root on Cloud Servers
Category Archives: servers
VMware plugs critical flaw in vCenter Server, patch ASAP!
VMware has fixed a critical vulnerability (CVE-2020-3952) affecting vCenter Server, which can be exploited to extract highly sensitive information that could be used to compromise vCenter Server or other services which depend on the VMware Directory Se… Continue reading VMware plugs critical flaw in vCenter Server, patch ASAP!
APT attacks targeting Linux, Windows and Android remained undetected for nearly a decade
Five related APT groups operating in the interest of the Chinese government have systematically targeted Linux servers, Windows systems and mobile devices running Android while remaining undetected for nearly a decade, according to BlackBerry. The repo… Continue reading APT attacks targeting Linux, Windows and Android remained undetected for nearly a decade
Total end-user spending on IT infrastructure products recovers
Total end-user spending on IT infrastructure products (server, enterprise storage, and Ethernet switch) for cloud environments, including public and private cloud, recovered in the fourth quarter of 2019 (4Q19) after two consecutive quarters of decline… Continue reading Total end-user spending on IT infrastructure products recovers
12,000+ Jenkins servers can be exploited to launch, amplify DDoS attacks
A vulnerability (CVE-2020-2100) in 12,000+ internet-facing Jenkins servers can be abused to mount and amplify reflective DDoS attacks against internet hosts, Radware researchers have discovered. The vulnerability can also be triggered by a single, spoo… Continue reading 12,000+ Jenkins servers can be exploited to launch, amplify DDoS attacks
DNSSEC still fueling DNS amplification attacks, TCP SYN flood attacks rise
DNS amplification attacks continue to increase in number, growing 4,788% over Q3 2018, according to Nexusguard. DNSSEC (Domain Name System Security Extensions) remains the main driver of growth of DNS amplification attacks in the quarter, yet analysts … Continue reading DNSSEC still fueling DNS amplification attacks, TCP SYN flood attacks rise
Server market revenue declines 6.7% year over year
Vendor revenue in the worldwide server market declined 6.7% year over year to $22.0 billion during the third quarter of 2019 (3Q19), according to IDC. Worldwide server shipments declined 3.0% year over year to just under 3.1 million units in 3Q19. In t… Continue reading Server market revenue declines 6.7% year over year
Lessons from the Louisiana Ransomware Attack
When a ransomware attack hit the state of Louisiana this week, affecting some of the state’s server computers, the government responded by taking its servers down. The move was a pre-emptive one, meant to prevent the ransomware from spreading to … Continue reading Lessons from the Louisiana Ransomware Attack
Researchers Find SMS Monitoring Malware in Linux Telecom Servers
A state-sponsored tool most likely used by Chinese advanced persistent threat group APT41 was discovered inside the Linux servers of an undisclosed telecom company, surveilling incoming and outgoing SMS messages. FireEye Mandiant recently identified a … Continue reading Researchers Find SMS Monitoring Malware in Linux Telecom Servers
Valve Source Engine, Fortnite Servers Crippled By Gafgyt Variant
Servers hosting Valve Source Engine and popular games like Fortnite are targeted by a new variant of the Gafgyt botnet. Continue reading Valve Source Engine, Fortnite Servers Crippled By Gafgyt Variant