VMware recently released a patch on November 12th for CVE-2019-5540, an identified vulnerability within vmnetdhcp. When first reading this, I didn’t think much of it considering the “dhcp” inclusion. However, when reading the summary of the vulnerability on VMware’s website, my opinion of this changed and I thought it’d be important to briefly discuss this further. Per … [Read more...]
Security Researcher Track: 102
Building off of the “101” article written here, let’s continue on with the roadmap to becoming a security researcher. In the previous article I explained the many interpretations of what this role consists of versus the “white hat hacker” nomenclature. In this blog post and onward I will be sticking to the “security researcher” title (unless otherwise stated), as this seems … [Read more...]
QEMU Poisoned with VENOM – Daily Security Byte EP.83
Virtualization technology is great, but it does add new attack surface. CrowdStrike disclosed a new QEMU vulnerability that affects many popular virtualization platforms. In today's video, I quickly summarize the issue, and share what you can do about it. (Episode Runtime: 2:10) Direct YouTube Link: https://www.youtube.com/watch?v=rNmDMq6vhyM EPISODE REFERENCES: QEMU VENOM … [Read more...]
When VMs Get Pwned: Real Security in Virtual Environments
This week I wrote an article for a few of our partners, include the well-known SpiceWorks IT pro forum. If you're interesting in learning about the additional risks introduced by hardware vritualization and in securing your virtual environment, read on. Spinning up a virtual machine (VM) without a good security policy, a hardened hypervisor, and virtual security controls is … [Read more...]
Crisis Malware Specifically Targets Virtual Machines
In a WatchGuard Security Week in Review video from about three weeks ago, I highlighted a new cross-platform malware variant called Crisis, which could infect both Windows and Mac computers by using a Java vulnerability that affected both platforms. The cross-platform nature of this malware alone made it pretty unique and interesting. This week, Symantec has uncovered new … [Read more...]