According to a KrebsOnSecurity report, a VMware vulnerability that allowed access to protected data and federated authentication abuse was misused by the SolarWinds hackers to attack high-value targets.
The US National Security Agency warned on Dec. 7 that Russian hackers were accessing vulnerability in the software of VMware to mimic legitimate users on hacked networks. According to the NSA, the hackers would need to be on the target’s internal network to exploit this vulnerability.
The NSA advisory came about 24 hours before FireEye reported that it had suffered a security breach intended to gain information on a few of the company’s government customers.
To Read More: CRN