Nightfall InfoSec Roundup: March 9 to March 16

In the Nightfall InfoSec Roundup, we summarize the latest information security news, breaches, vulnerabilities & advancements. In this week’s edition:

Exploits & Vulnerabilities


VMWare Releases Fix for Critical Guest-to-Host Vulnerability
A security update has been released that fixes a Critical vulnerability in VMware Workstation Pro that could allow an application running in a guest environment to execute a command on the host. This vulnerability is in the Windows vmnetdhcp service, which is used toassign IP addresses to the guest host via DHCP.


Details about new SMB wormable bug leak in Microsoft Patch Tuesday update
Details about a new “wormable” vulnerability in the Microsoft Server Message Block (SMB) protocol have accidentally leaked online today during the preamble to Microsoft’s regular Patch Tuesday update cycle. No technical details have been published, but short summaries describing the bug have been posted on the websites of two cyber-security firms, Cisco Talos and Fortinet.


Most computers easy to hack due to vulnerability in memory chips
Most computer systems are still very easy to hack, due to a vulnerability in memory chips produced by Samsung, Micron and Hynix, according to a study by researchers from VUSec of the Vrije Universiteit Amsterdam. The vulnerability in question is called Rowhammer, a design flaw in the internal memory (DRAM) chips of a device that creates the vulnerability.


LVI Attacks: New Intel CPU Vulnerability Puts Data Centers At Risk
Modern Intel CPUs have now been found vulnerable to a new attack that involves reversely exploiting Meltdown-type data leak vulnerabilities to bypass existing defenses, two separate teams of researchers told The Hacker News.


AMD Downplays CPU Threat Opening Chips to Data Leak Attacks
New speculative execution attacks have been disclosed in AMD CPUs, however AMD said that they are not new. AMD is seeking to downplay side-channel attacks that can leak potentially sensitive data from its processors released between 2011 and 2019. The Take A Way attack, so-called by researchers with the Graz University of Technology in a new analysis this weekend,is a side-channel attack.


PPP Daemon flaw opens Linux distros, networking devices to takeover attacks
A vulnerability (CVE-2020-8597) in the Point-to-Point Protocol Daemon software, which comes installed on many Linux-based and Unix-like operating systems and networking devices, can be exploited by unauthenticated attackers to achieve code execution on – and takeover of – a targeted system. The vulnerability affects Debian GNU/Linux, NetBSD, Red Hat, Ubuntu, OpenWRT, TP-LINK and Cisco offerings.

Ongoing Risks & Threats


Hackers are using the COVID-19 pandemic to spread malware
Every time theres a major news story, a world event or even regular national events like tax preparation season, hackers jump at the chance to take advantage of the uptick in chatter to launch attacks against unsuspecting victims. As it turns out, the COVID-19 pandemic isnt any different.


Make America Safe Again? Federal Commission Warns U.S. At Risk Of ‘Catastrophic’ Cyber-Attack
A year-long analysis of threats to the U.S. has concluded that the country is dangerously insecure in cyber. So, what needs to be done to make America safe again? The federal Cyberspace Solarium Commission, chaired by Senator Angus King and Rep. Mike Gallagher, has published the results of a year-long analysis of the cyber-threat facing the U.S.


DDoS Attack Trends Reveal Stronger Shift to IoT, Mobile
Attackers are capitalizing on the rise of misconfigured Internet-connected devices running the WS-Discovery protocol, and mobile carriers are hosting distributed denial-of-service weapons. Distributed denial-of-service (DDoS) attacks remain a popular attack vector but have undergone changes as cybercriminals shift their strategies.


Share this post: