قالب وردپرس درنا توس
Home / Insurance / The United States orders federal authorities to update or remove certain VMWare products

The United States orders federal authorities to update or remove certain VMWare products



(Reuters) – The U.S. cyber-security watchdog on Wednesday ordered federal officials to update or remove a variety of products manufactured by digital services provider VMWare Inc., saying hackers were actively using vulnerable versions of the products to break into targeted organizations.

The Cybersecurity and Infrastructure Security Agency said in a statement that hackers had managed to reverse the latest updates made to VMWare products and used the knowledge to target old versions and hack into unpaired devices.

Affected products include VMware Workspace ONE Access, which is intended to provide single access to various digital services, and VMware vRealize Automation, which helps manage and automate complex IT processes.

CISA said all unpaired VMWare devices still available from the Internet should be considered compromised.

VMWare, which was derived from Dell Technologies Inc. last year, did not immediately return a comment message.

CISA chief Jen Easterly said in a statement that the vulnerabilities in older versions of VMWare products posed “an unacceptable risk to federal network security.”

;

“We also strongly urge all organizations – large and small – to follow the lead of the federal government and take similar steps to protect their networks,” she said.


Source link