Want to create an interactive transcript for this episode?
Podcast: CISA Cybersecurity Alerts
Episode: Update 1 to CISA Alert AA22-138B – Threat actors chaining unpatched VMware vulnerabilities for full system control.
Description: Malicious cyber actors are exploiting multiple critical vulnerabilities in VMware products. Successful exploitation permits malicious actors to trigger a server-side template injection that may result in remote code execution or escalation of privileges to root level access. CISA has updated this alert with additional indicators of compromise, detection signatures, and threat actor TTPs from trusted third parties to assist administrators with detecting and responding to this activity.AA22-138B Alert, Technical Details, and MitigationsAA22-138B.stixEmergency Directive 22-03 Mitigate VMware VulnerabilitiesVMware Security Advisory VMSA-2022-0011<...