Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
A. Today’s MSSP, MDR, XDR and Cybersecurity News Alerts
1. VMware vCenter Vulnerability: VMware disclosed that its vCenter Server is affected by an arbitrary file upload vulnerability—CVE-2021-22005—in the Analytics service. A malicious cyber actor with network access to port 443 can exploit this vulnerability to execute code on vCenter Server, the CISA reports.
2. ZLoader Disables Windows Defender: A ZLoader campaign, promoted through fake TeamViewer ads placed on Google Adwords, implements malware that disables all Microsoft Windows Defender modules, according to SentinelOne research.
3. Cybersecurity Spin-Out: Sicura has spun out of government contractor OnyxPoint, and received seed investment from venture capital firm Squadra. Sicura helps organizations to achieve and maintain compliance with various regulations.