Vier europäische Verbände haben einen offenen Brief an die Europäische Kommission geschickt. Und beschweren sich darüber, dass #VMware nach dem Kauf durch Broadcom plötzlich teurer geworden ist, und auch sonst sein Geschäftsmodell zu Lasten seiner Kunden geändert hat.
Ich frage mich, ob die Politik da wirklich helfen kann. Was haben die den Verbänden angeschlossenen Unternehmen denn getan, um sich gegen dieses erwartbare Verhalten des mächtigen Lieferanten abzusichern?
Mag sein, dass VMware den einen oder anderen Vorteil gegenüber Open-Source Lösungen hat. Aber sich deswegen in eine solche Abhängigkeit zu begeben, das ist deren private, unternehmerische Entscheidung.
2024 ist das Jahr, in dem Broadcom der Welt erklärt die Bedeutung von Digitaler Souveränität erklärt.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #24/2023 is out! It includes, but not only:
→ 🇺🇸 🇨🇳 The US Navy, NATO, and #NASA are using a shady Chinese company’s #encryption chips
→ 🦠 🏢 #Ransomware Group Starts Naming Victims of #MOVEit Zero-Day Attacks
→ ☁️ 🪣 New Supply Chain Attack Exploits Abandoned #S3Buckets to Distribute Malicious Binaries
→ ☁️ #XSS Vulnerabilities in #Azure Led to Unauthorized Access to User Sessions
→ 🇨🇳 🦠 #Barracuda ESG zero-day attacks linked to suspected Chinese hackers
→ 🇷🇺 🇺🇸 Russian national arrested in Arizona, charged for alleged role in #LockBit ransomware attacks
→ 🇷🇺 🇺🇦 Russia-backed hackers unleash new USB-based malware on #Ukraine’s military
→ 🇺🇸 💰 LockBit Ransomware Extorts $91 Million from U.S. Companies
→ 🇷🇺 🇺🇦 #Microsoft identifies new hacking unit within Russian military intelligence
→ 🦠 Fake Researcher Profiles Spread #Malware through #GitHub Repositories as PoC Exploits
→ 🎣 👟 Massive #phishing campaign uses 6,000 sites to impersonate 100 brands
→ 🇨🇳 Chinese Cyberspies Caught Exploiting #VMware ESXi #ZeroDay
→ 🩹 Microsoft #PatchTuesday, June 2023 Edition
→ ☁️ Microsoft: Azure Portal #outage was caused by traffic “spike”
→ 🇨🇳 🇺🇸 #China's cyber now aimed at infrastructure, warns CISA boss
→ 🇰🇷 🇨🇳 Ex-Samsung executive alleged to have stolen tech to recreate chip plant in China
→ 🇨🇭 🗄️ Swiss Fear Government Data Stolen in Cyberattack
→ 🩹 🔐 #Fortinet fixes critical RCE flaw in #Fortigate SSL-VPN devices, patch now
📚 This week's recommended reading is: "The Cyber Effect: An Expert in Cyberpsychology Explains How Technology Is Shaping Our Children, Our Behavior, and Our Values — and What We Can Do About It" by Prof Mary Aiken
Subscribe to the #newsletter to have it piping hot in your inbox every Sunday ⬇️
Hi, I'm Scott. I've been a blogger since 2005, an author since 2009, & a podcast host since 2016. I've worked for companies like #EMC (acquired by Dell), #Nicira (acquired by #VMware), #Heptio (acquired by VMware), & #Kong; currently I'm working on the #DevRel team at #Pulumi. I post about #Linux, #Kubernetes, #AWS, #IaC, & other technical topics.
On the personal side, I'm a devoted husband, a loving father, & a Christian who strives to love instead of condemn.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #35/2023 is out! It includes the following and much more:
➝ 🔓 🏌🏻♂️Golf gear giant #Callaway data breach exposes info of 1.1 million
➝ 🔓👕 Forever 21 data breach affects half a million people
➝ 🔓 🤦🏻♂️ #LogicMonitor customers hit by hackers, because of default passwords
➝ 🇺🇸 ⚖️ Lawsuit Accuses University of Minnesota of Not Doing Enough to Prevent #DataBreach
➝ 🎬 🔓 #Paramount discloses data breach following security incident
➝ 🏥 🔓 #Healthcare Organizations Hit by Cyberattacks Last Year Reported Big Impact, Costs
➝ 🇺🇸 🌎 #Microsoft joins a growing chorus of organizations criticizing a #UN cybercrime treaty
➝ 🇺🇸 🦠 U.S. Hacks #QakBot, Quietly Removes Botnet Infections
➝ 🇷🇺 🇺🇦 #Russia targets #Ukraine with new Android #backdoor, intel agencies say
➝ 🇷🇺 🕵🏻♂️ Unmasking #Trickbot, One of the World’s Top Cybercrime Gangs
➝ 🇨🇳 👀 ‘Earth Estries’ #Cyberespionage Group Targets Government, Tech Sectors
➝ 🇨🇳 Chinese Hacking Group Exploits Barracuda Zero-Day to Target Government, Military, and Telecom
➝ 💸 🇪🇺 Pay our ransom instead of a #GDPR fine, #cybercrime gang tells its targets
➝ 🇺🇸 🇨🇳 #Meta: Pro-Chinese influence operation was the largest in history
➝ 🇪🇸 📸 Spain warns of #LockBit Locker ransomware phishing attacks
➝ 🇵🇱 🚂 Two Men Arrested Following #Poland Railway Hacking
➝ 🇰🇵 🐍 #Lazarus hackers deploy fake #VMware PyPI packages in #VMConnect attacks
➝ 💸 #Classiscam fraud-as-a-service expands, now targets banks and 251 brands
➝ 💬 🎠 Trojanized #Signal and #Telegram apps on Google Play delivered spyware
➝ 🦠 📄 MalDoc in PDFs: Hiding malicious Word docs in PDF files
➝ 🇧🇷 👀 A Brazilian phone #spyware was hacked and victims’ devices ‘deleted’ from server
➝ 👨🏻💻 🔐 #GitHub Enterprise Server Gets New Security Capabilities
➝ 🚗 💰 Over $1 Million Offered at New #Pwn2Own#Automotive Hacking Contest
➝ 🩹 #Splunk Patches High-Severity Flaws in Enterprise, IT Service Intelligence
➝ ⛏️ 🔓 Recent #Juniper Flaws Chained in Attacks Following #PoC Exploit Publication
📚 This week's recommended reading is: "Spam Nation: The Inside Story of Organized Cybercrime―from Global Epidemic to Your Front Door" by @briankrebs
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️
I don't know why #Broadcom wants to throw away the $69 billion they spent on #VMware, but customers and partners alike are abandoning the new "improved" VMware.
Keep getting tx hang errors on #VMware#ESXi with my #Kubernetes cluster nodes (likely due to a busy ingress?). So fucking tempted to migrate to #Proxmox, but 1) how would I be able to retain my existing servers (half of which are pretty critical) and 2) idk if it would even be a fix for this specific issue.
#Homelabber (s) with experience with both for their #homelab (s), feel free to chime in for any differences between the two - I'm also interested in how compatible Proxmox is with general desktop hardware. My ESXi based server uses pretty much all off the shelf desktop parts (Ryzen 7 1700, B450, etc.) and it's been serving me well, tho I did have to customise the installer ISO and add some drivers for the SATA ports and NIC.
🗜️Broadcom slammed by cloud trade group amid claims it's "holding the sector to ransom" with VMware license changes - ITPro
「 The Cloud Infrastructure Service Providers in Europe (CISPE) consortium called on regulatory and legislative bodies across Europe to investigate the changes Broadcom has made to the VMware operating model, which it says will “decimate” the region’s cloud infrastructure 」
New flaws identified (CVE-2024-22245 & CVE-2024-22250) in the EAP plugin. Attackers could exploit them to hijack #ActiveDirectory accounts and privileged EAP sessions.
VMware is about to level up Windows on Apple silicon with huge performance gains (www.imore.com)
A big upgrade is coming to Windows on Macs.