Bloomberg Law
Free Newsletter Sign Up
Bloomberg Law
Welcome
Go
Free Newsletter Sign Up

Agencies Told to ‘Assume Compromise’ of Cloud Service, Patch Now

May 19, 2022, 9:15 AM

Cloud computing company VMware is under attack from what the Cybersecurity and Infrastructure Security Agency has called “likely advanced persistent threat” actors, endangering government systems across civilian agencies.

In a May 18 alert, CISA said these actors managed to reverse engineer previous efforts to address vulnerabilities, creating new areas of concern. The cyber agency in an emergency directive warned that it “expects threat actors to quickly develop a capability to exploit these newly released vulnerabilities in the same impacted VMware products.”

The warnings underscore the struggle to protect federal networks a year after President Joe Biden signed a sweeping ...