Clik here to view.
Private Cloud en cours de qualification SecNumCloud
OVH est officiellement en cours de qualification pour son offre Private Cloud. Cette première étape formelle dans le projet de qualification est l’occasion de faire un point sur le dispositif mis en...
View ArticleClik here to view.
Microsoft Exchange Server Vulnerabilities
On March 2nd, Microsoft published a security patch for 4 vulnerabilities on Microsoft Exchange Server. Security researchers detected that those vulnerabilities are actively exploited for targeted...
View ArticleClik here to view.
Log4j vulnerability (CVE-2021-44228)
On December 10th, a group of security researchers published a security notice regarding a vulnerability in Log4j. Log4j is a library commonly used in Java environment to manage logging. Log4j versions...
View ArticleClik here to view.
Log4shell, how to protect my cloud workloads
Update 22/12: 2 new vulnerabilities have been identify. Those vulnerabilities are also impacting the initial patchs (2.15.0 and 2.16.0): CVE-2021-45105 : Risk of Denial of Service (DOS)CVE-2021-45046...
View ArticleClik here to view.
Ransomware targeting VMware ESXi
A wave of attacks is currently targetting ESXi servers. No OVHcloud managed service are impacted by this attack however, since a lot of customers are using this operating system on their own servers,...
View ArticleClik here to view.
CVE-2023-20593/Zenbleed
On July 24th 2023, AMD has issued a security bulletin disclosing a vulnerability in its Zen2 computer processor microarchitecture. Named “Cross-Process Information Leak” by AMD, the vulnerability is...
View ArticleClik here to view.
Backdoor in xz/liblzma (CVE-2024-3094)
On March 29th, Andres Freund, a Postgres developer, working at Microsoft, identified a response time while authenticating to openSSH on a Debian Sid installation that was about 500 ms longer as usual....
View Article