By Need

Security Programs

Enterprise wide security programs & zero trust

Hybrid Cloud Environments

Secure, scalable, and optimized

Modern Networks

The crucial foundation of business

Anytime Secure Access

Combining productivity and security

Innovation Velocity

Improved developer experiences

Managed Carrier Services

High performance and cost effective

View All Needs

By Industry

Finance & Banking

Stay ahead of today’s rapid change

Healthcare & Life Sciences

Improve lives with modern solutions

Business Services

Create efficiencies for sustained success

Public Sector

Serve the community with technology

Manufacturing

Unlock efficiencies for Industry 4.0

Retail

Get closer to customers

View All Industries

By Function

IT & Operations

Support your strategic vision

Engineering & Development

Enhance your developer experience

Finance & Procurement

Optimize for cost and security

Product Management

Make your vision a reality

HR

Focus on your people

View All Functional Areas
Managed Services

Remove the complexity of daily IT maintenance and focus on business growth

Cybersecurity & Risk Management

Secure business processes without sacrificing employee productivity

Cloud

Accelerate digital transformation while optimizing for cost

Carrier Services

Simplify and centralize complex business communication systems

Modern Workspace

Empower employees to work from anywhere on any device

Networking

Connect traditional environments to new secure cloud possibilities

Datacenter Modernization

Adapt to a hyperscaled cloud-first IT environment

View All Services

Learn

Knowledge Center
Events & Webinars
Blog
News

FEatured Resource

Cybersecurity & Risk Management 9 min read

Protecting the Digital Break Room: Collaboration Security for Microsoft Teams

By Jeremy Bello
Partners

Company

About Blue Mantis
News
Leadership
Awards
Philanthropy
Careers

FEatured News

4 min read

A Year of Transformation Produces Strong Tailwinds for Blue Mantis in 2024

By Josh Dinneen
Let’s Meet
All Blog Posts
Cybersecurity & Risk Management

New Mac Mystery Malware “Silver Sparrow” & New VMware (RCE) in vCenter!

By Randy Becker February 25, 2021

By Randy Becker, CISO & VP, Network and Security Consulting

There is a new form of malware (dubbed “Silver Sparrow” by Red Canary) that seems to be affecting Macs running Intel processors and Apple’s own M1 processors. It does not appear as though the malware has done anything nefarious, but as the saying goes, where there’s smoke there is often fire.

VMware announces Remote Code Execution (RCE) vulnerability in the vCenter with a CVSSv3 base score of 9.8 CVE-2021-21972. This one looks ripe for exploitation as it is a RCE **AND** a 9.8 In addition to this, two others were found—all in the CVSSv3 range of 5.3-9.8.

Last week the security researchers at Red Canary posted information on “Silver Sparrow”—a new form of malware that seems to be affecting Macs running Intel processors and the company’s own M1 processors. The malware targets LaunchAgent—a root-level folder in macOS that contains scripts to automatically manage system processes such as backups with Apple’s Time Machine.

Ironically, the LaunchAgent folders were introduced to help prevent malware attacks. Now we know that these folders are being targeted in this mysterious malware attack. It does not appear as though the malware has done anything nefarious, but as the saying goes, where there’s smoke there is often fire. Read Red Canary’s entire post for detailed background information and remediation recommendations.

In VMware news, Tuesday was a big day on the vulnerability and RCE front. VMware announced a Remote Code Execution (RCE) vulnerability in the vCenter Server virtual infrastructure management platform (CVE-2021-21972) with a CVSSv3 base score of 9.8 out of 10 according to VMware’s security advisory. This one looks ripe for exploitation as it is an RCE **AND** a 9.8.

In addition to this, there were two additional vulnerabilities found: CVE-2021-21973 and CVE-2021-21974—ESXi, vCenter Server, and Cloud Foundation. All three of the vulnerabilities span between a CVSSv3 range of 5.3-9.8. Remote attackers could exploit some of these vulnerabilities to take control of an affected system. To address these, VMware has released security updates for them all.

If you have any questions or need help with these vulnerabilities or any initiative relates to securing your business, please reach out to your GreenPages Account Executive or reach out to us!

Randy Becker.

Randy Becker

Randy is responsible for GreenPages’ overall cyber security strategy, including developing comprehensive policies and procedures to protect critical applications while ensuring business agility and velocity. With more than 30 years in the IT industry, Randy has strong expertise in cyber security and risk management; security operations and optimization; infrastructure modernization; and hybrid cloud architecture, design, and implementation. Randy is also a HITRUST Certified CSF Practitioner (CCSFP) which ensures clients have access to the highest level of expertise related to privacy, security, compliance, and risk management.

Recent Blog Posts

View All Posts
Cybersecurity & Risk Management 7 min read

Is Deepfake Technology Outpacing Security Countermeasures?

By Rob Fitzgerald
Cloud 8 min read

Azure Virtual Desktop and Deploying Windows 11 at Scale

By Jeremy Bello
Cloud 7 min read

Maximizing Business Productivity with Copilot for Microsoft 365

By Josh Morganthall