Cyber

NSA Releases Advisory on Russian State-Sponsored Malicious Cyber Actors Exploiting CVE-2020-4006

07/12/2020

Read Time43 Second

12/07/2020 11:25 AM EST

Original release date: December 7, 2020
The National Security Agency (NSA) has released a Cybersecurity Advisory on Russian state-sponsored actors exploiting CVE-2020-4006, a command-injection vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. The actors were found exploiting this vulnerability to access protected data on affected systems. The NSA advisory provides mitigation and detection guidance.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following resources and apply the necessary updates and detection guidance.

NSA Cybersecurity Advisory Russian State-Sponsored Actors Exploiting Vulnerability in VMware Workspace ONEAccess Using Compromised Credentials
VMware Security Advisory VMSA-2020-0027.2
CERT Coordination Center (CERT/CC) Vulnerability Note VU#724367

Average Rating

5 Star

4 Star

3 Star

2 Star

1 Star

(Add your review)

You must log in to post a comment.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

#Breaking: #Russian #hack of US agencies exposed supply chain weaknesses

News Agency News247WorldPress

25/01/2021

https://twitter.com/Independent/status/1353572821096681473?s=20 Source: Twitter

#BobCarver ✭ @cybersecboardrm: How #Facebook’s Image Description Tool For Visually Impaired Works

News Agency News247WorldPress

24/01/2021

https://twitter.com/cybersecboardrm/status/1353426373533200384?s=20 Source: Twitter

#Breaking: #Hacker leaks data of 2.28 million dating site users

News Agency News247WorldPress

24/01/2021

https://twitter.com/ZDNet/status/1353325408456998913?s=20 Source: Twitter

#Breaking: #Twitter suspends #Iran top leader’s account over #Trump threat

News Agency News247WorldPress

22/01/2021

https://twitter.com/CP24/status/1352675091235139584?s=20 Source: Twitter

#Breaking: #Hackers publish thousands of files after government agency refuses to pay #ransom

News Agency News247WorldPress

22/01/2021

https://twitter.com/ZDNet/status/1352605702301372416?s=20 Source: Twitter

#Breaking: #Cybercriminals accidentally exposed thousands of stolen log-in credentials accessible to anyone via #Google search

News Agency News247WorldPress

21/01/2021

https://twitter.com/TheHackersNews/status/1352210628736237571?s=20 Source: Twitter

#Breaking: Actress #SongYooJung Has Passed Away By Suicide

#BREAKING: #Indian, #Chinese troops in new border brawl, injuries on both sides

#BREAKING: #California will lift regional stay-at-home orders across the entire state on Monday

#BREAKING: #Biden to reinstate #Covid travel restrictions

#Breaking: #SarahHuckabee Sanders to run for governor of Arkansas

#Breaking: Mexico’s president, a #coronavirus skeptic, is the latest world leader to become infected

#Breaking: #Sensex, #Nifty inch higher as rebound in banks offset Reliance slide

#Breaking: #Toshiba shares surge as much as 16%, the most in 3 years

#Breaking: Over one million #Israelis have received both doses of the #coronavirus

#Breaking: #Russian #hack of US agencies exposed supply chain weaknesses

NSA Releases Advisory on Russian State-Sponsored Malicious Cyber Actors Exploiting CVE-2020-4006

Related

Average Rating

#Breaking: #Russian #hack of US agencies exposed supply chain weaknesses

#BobCarver ✭ @cybersecboardrm: How #Facebook’s Image Description Tool For Visually Impaired Works

#Breaking: #Hacker leaks data of 2.28 million dating site users

#Breaking: #Twitter suspends #Iran top leader’s account over #Trump threat

#Breaking: #Hackers publish thousands of files after government agency refuses to pay #ransom

#Breaking: #Cybercriminals accidentally exposed thousands of stolen log-in credentials accessible to anyone via #Google search