Rewterz Official Statement on the Reported Data Breach of 115M Pakistani Mobile Users

April 11, 2020
Rewterz

Rewterz Threat Alert – New Ursnif Campaign: A Shift from PowerShell to Mshta

April 13, 2020

Rewterz Threat Advisory – CVE-2020-3952 – VMWare vCenter Server Information Disclosure vulnerability

Severity

High

Analysis Summary

Under certain conditions vmdir that ships with VMware vCenter Server, as part of an embedded or external Platform Services Controller (PSC), does not correctly implement access controls. A malicious actor with network access to an affected vmdir deployment may be able to extract highly sensitive information which could be used to compromise vCenter Server or other services which are dependent upon vmdir for authentication.

Impact

Information disclosure

Affected Vendors

VMWare

Affected Products

vCenter Server 6.7 (embedded or external PSC) prior to 6.7u3f

Remediation

Update to fixed version.

https://my.vmware.com/web/vmware/details?productId=742&rPId=44888&downloadGroup=VC67U3F

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.