A week in security (March 4 – March 10)

March 8, 2024 – The flaws could allow an attacker with privileged access to a guest VM to access the hypervisor on the host.

March 8, 2024 – Users of JetBrains TeamCity on-prmises server need to deal with two serious vulnerabilities.

March 7, 2024 – Pet retail company PetSmart has emailed customers to alert them to a recent attack that used reused passwords.

March 7, 2024 – The US Treasury Department has sanctioned Predator spyware vendor Intellexa Consortium, and banned the company from doing business in the US.

March 6, 2024 – The ALPHV gang’s attempt to cover up an exit scam isn’t going well.