Security Vulnerability Alert: VMware
A Security Vulnerability was recently discovered in VMWare applications.
Impacted Products: VMware vCenter Server (vCenter Server) & VMware Cloud Foundation (Cloud Foundation)
What is the issue?
A VMware advisory has stated that vCenter machines using default configurations have a bug that, in many networks, allows for the execution of malicious code when the machines are reachable on a port that is exposed to the Internet.
VMware urges instant patching.
What is the risk?
The vulnerabilities can be exploited by malicious actors with access to the network. There is risk to operating systems that host vCenter Servers as well as, allowing activities to take place without authentication on Virtual SAN Health Check, Site Recover, vSphere Lifecycle Manager and VMware Cloud Director Availability.
What should I do?
The link below contains tips for patching, and the company has also published a Q&A document regarding the flaws and their remediation. While workarounds are available, VMware states that implementing the security updates is the better option.
Welcome!
If you are reading this guide, you are about to embark on a process that will help your organization harness the potential of technology to deliver your mission and best serve your community. Proactively planning for technology is about more than replacing old computers (although that might be part of your plan!). This process will help your organization fundamentally shift the way you approach technology investments toward greater mission achievement and community impact. It will identify opportunities for technology to help you control costs, reduce risk, raise funds, and empower staff.
Strategic technology planning – much like any strategic planning process – is a comprehensive look at the current state and the desired future state for your organization. If you just need some new computers, this may not be the right process. But if you are ready to treat technology as a mission-critical investment that can accelerate your organization’s impact, you are in the right place! Your nonprofit has much to gain from appropriately integrating technology into your operations, communications, fundraising, and service delivery. This guide offers step-by-step support to help you lead your organization through technology planning, resulting in a roadmap to smart technology use.
Acknowledgements
This guide has been produced through the generous support of the Rasmuson Foundation, a private foundation that works as a catalyst to promote a better life for Alaskans. Learn more at www.rasmuson.org. It was written and edited by Lindsay Bealko of Toolkit Consulting, who helps mission-minded organizations design creative communications, engaging education, and powerful programs. Learn more at www.toolkitconsulting.com.
Special thanks to Orion Matthews and Jeremiah Dunham of DesignPT for their substantial contributions to and reviews of this guide to make it as useful as possible to nonprofit organizations who are ready to harness the strategic potential of technology. Learn more and request help with your strategic technology plan at www.designpt.com.
Please help us improve our website by providing your feedback