(credit score: Pixabay)
Hackers have been exploiting a now-patched vulnerability in VMware Workspace ONE Entry in campaigns to put in varied ransomware and cryptocurrency miners, a researcher at safety agency Fortinet stated on Thursday.
CVE-2022-22954 is a distant code execution vulnerability in VMware Workspace ONE Entry that carries a severity score of 9.eight out of a attainable 10. VMware disclosed and patched the vulnerability on April 6. Inside 48 hours, hackers reverse-engineered the replace and developed a working exploit that they then used to compromise servers that had but to put in the repair. VMware Workspace ONE entry helps directors configure a collection of apps workers want of their work environments.
In August, researchers at Fortiguard Labs noticed a sudden spike in exploit makes an attempt and a significant shift in ways. Whereas earlier than the hackers put in payloads that harvested passwords and picked up different knowledge, the brand new surge introduced one thing else—particularly, ransomware generally known as RAR1ransom, a cryptocurrency miner generally known as GuardMiner, and Mirai, software program that corrals Linux units into a large botnet to be used in distributed denial-of-service assaults.
Learn three remaining paragraphs | Feedback
