• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

VMware Vulnerability: CVE-2019-5540

November 19, 2019 By Emil Hozan

VMware recently released a patch on November 12th for CVE-2019-5540, an identified vulnerability within vmnetdhcp. When first reading this, I didn’t think much of it considering the “dhcp” inclusion. However, when reading the summary of the vulnerability on VMware’s website, my opinion of this changed and I thought it’d be important to briefly discuss this further. Per … [Read more...]

Security Researcher Track: 102

December 13, 2018 By Emil Hozan

Building off of the “101” article written here, let’s continue on with the roadmap to becoming a security researcher. In the previous article I explained the many interpretations of what this role consists of versus the “white hat hacker” nomenclature. In this blog post and onward I will be sticking to the “security researcher” title (unless otherwise stated), as this seems … [Read more...]

QEMU Poisoned with VENOM – Daily Security Byte EP.83

May 14, 2015 By Corey Nachreiner

Virtualization technology is great, but it does add new attack surface. CrowdStrike disclosed a new QEMU vulnerability that affects many popular virtualization platforms. In today's video, I quickly summarize the issue, and share what you can do about it.   (Episode Runtime: 2:10) Direct YouTube Link: https://www.youtube.com/watch?v=rNmDMq6vhyM EPISODE REFERENCES: QEMU VENOM … [Read more...]

When VMs Get Pwned: Real Security in Virtual Environments

August 31, 2012 By Corey Nachreiner

This week I wrote an article for a few of our partners, include the well-known SpiceWorks IT pro forum. If you're interesting in learning about the additional risks introduced by hardware vritualization and in securing your virtual environment, read on. Spinning up a virtual machine (VM) without a good security policy, a hardened hypervisor, and virtual security controls is … [Read more...]

Crisis Malware Specifically Targets Virtual Machines

August 22, 2012 By Corey Nachreiner

In a WatchGuard Security Week in Review video from about three weeks ago, I highlighted a new cross-platform malware variant called Crisis, which could infect both Windows and Mac computers by using a Java vulnerability that affected both platforms. The cross-platform nature of this malware alone made it pretty unique and interesting. This week, Symantec has uncovered new … [Read more...]

Next Page »

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Scratching the Surface of Rhysida Ransomware
  • An Interview with ChatGPT
  • TikTok is Banned, Kind Of
  • How Not to Update Software

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • How Not to Update Software
  • Naming APTs
  • TikTok is Banned, Kind Of
  • Scratching the Surface of Rhysida Ransomware
  • An Interview with ChatGPT
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use