NSA Warns of Remote Work Platform Attack

As industries continue to work remotely, hackers continue to look for new ways to exploit the virtual workplace. The National Security Agency released a warning that Russian hackers are targeting the popular cloud workforce tools made by VMware. The company released a Security Bulletin Thursday, outlining impacted products and patches to the vulnerabilities.

The National Cybersecurity and Infrastructure Security Agency released this alert Thursday:

“VMware has released security updates to address a vulnerability—CVE-2020-4006—in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. An attacker could exploit this vulnerability to take control of an affected system.”

The tools impacted by the hack are all cloud workforce tools including a cloud database tool, and a cloud application management tool. The statements from CISA and the NSA are warning of data compromise through this attack.

VMware is an industry standard in cloud computing software. Both government agencies and large corporations use tools made by the company in their digital workflow. System administrators are advised to actively patch VMware tools and continue to follow this story as it evolves.

We continue to follow the new ways hackers are trying to take advantage of the pandemic, from enterprise to employee level attacks. Stay connected to our blog and newsletter to receive IT Security news that impacts your business.

Quanexus IT Support Services for Dayton and Cincinnati

Request your free network assessment today. There is no hassle, or obligation.

If you would like more information, contact us here or call 937.885.7272.

Follow us on FacebookTwitter and LinkedIn and stay up to date on by subscribing to our email list.

Posted by Charles Wright