Western Digital MyBook devices are getting erased, REvil targets ESXi virtual machines, Microsoft accidentally signed a rootkit, John McAfee passed away, spotted owls are not doing well and policy as code gets a new notification by tying it together with Grafana and prometheus.
- If you have a Western Digital MyBook device, keep an eye out as a number are being erased remotely. A CVE has been assigned via BleepingComputer
- News about ransomware about “REvil ransomware’s new Linux encryptor targets ESXi virtual machines”. No longer just a Windows or physical server issue, the ransomware allows them to target all of the VMs via BleepingComputer.
- Oof, another supply chain attack as Microsoft signed a rootkit that was observed connecting to Chinese IPs. BleepingComputer
- RIP to John McAfee after he reportedly committed suicide after being allowed to being extradited to the US. It is sad when anyone passes away and if “you or someone you know is in crisis, call the National Suicide Prevention Lifeline at 800-273-8255, text TALK to 741741, or visit https://suicidepreventionlifeline.org for more information.” Read more at Motherboard.
Owl fun and facts:
A new study says that the number of spotted owls “are the lowest on record—their population has declined by somewhere between 50 and 75 percent since 1995, according to a study published in the journal Biological Conservation.” Read more at National Geographic.
A Shout Out:
This is a really exciting policy as code use case using OPA (open policy agent) with Grafana and prometheus to alert on constraints. I really appreciate the combinations here of open source tools you’re probably already using for a new workflow. Take a look for more here.
About:
TSD began as an internal newsletter that our Security Lead, Daniel Tobin, would circulate to the team each Tuesday. It proved to be a great resource for all of us so we thought, why not share it with all of you? Our hope is that it helps make you just a bit more secure.
Check back here every Tuesday for more TSD or sign up below to stay in the loop!
Please reach out to us directly, via security@cyral.com or on Twitter at @dant24 if you have any questions, concerns, tips or anything else!
That’s owl for now!