Guru3D.com

Dell warns of RecoverPoint for VMs zero-day (exploited since mid-2024)

If you’re running Dell RecoverPoint for Virtual Machines in a VMware setup, this is one of those “drop what you’re doing and check versions” moments. Dell is warning about CVE-2026-22769, a ...
Hosted on MSN

CISA gives federal agencies three days to patch actively exploited Dell bug

Uncle Sam's cyber defenders have given federal agencies just three days to patch a maximum-severity Dell bug that's been under active exploitation since at least mid-2024.… CISA this week added the ...
heise online

Patch now! Attackers are targeting Dell RecoverPoint for Virtual Machines

Important security updates have been released for Dell RecoverPoint for Virtual Machines and Avamar Server, among others. Attacks are already occurring. State-sponsored Chinese hackers from the ...
Hosted on MSN

China-linked snoops have been exploiting Dell 0-day since mid-2024, using 'ghost NICs' to avoid detection

Full scale of infections remains 'unknown' China-linked attackers exploited a maximum-severity hardcoded-credential bug in Dell RecoverPoint for Virtual Machines as a zero-day since at least mid-2024.
CSOonline

Chinese hackers exploited zero-day Dell RecoverPoint flaw for 1.5 years

A suspected Chinese espionage group exploited hardcoded admin credentials in Dell RecoverPoint for Virtual Machines to deploy web shells and maintain persistence in enterprise VMware environments. For ...
Bleeping Computer

Chinese hackers exploiting Dell zero-day flaw since mid-2024

A suspected Chinese state-backed hacking group has been quietly exploiting a critical Dell security flaw in zero-day attacks that started in mid-2024. Security researchers from Mandiant and the Google ...
Security

CISA’s 3-Day Patch Order on Dell RecoverPoint Signals Broader Enterprise Risk

The Cybersecurity and Infrastructure Security Agency (CISA) has given federal civilian agencies three days to fix a critical security flaw in Dell Technologies’ RecoverPoint for Virtual Machines after ...
Bleeping Computer

CISA orders feds to patch actively exploited Dell flaw within 3 days

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their systems within three days against a maximum-severity Dell vulnerability that has been under ...
Threat Post

Six Vulnerabilities Found in Dell EMC’s Disaster Recovery System, One Critical

A pen-tester has found five vulnerabilities in Dell EMC RecoverPoint devices, including a critical RCE that could allow total system compromise. A pen-tester has found six vulnerabilities in Dell EMC ...
Dark Reading

Dell's Hard-Coded Flaw: A Nation-State Goldmine

A Chinese nation-state threat actor targeted a Dell hard-coded credential vulnerability for two years, emphasizing the danger of what happens when a product comes pre-compromised. Yesterday, Google ...
Infosecurity-magazine.com

Chinese APT Group Exploits Dell Zero-Day for Two Years

Dell has released a patch for a critical zero-day vulnerability in its RecoverPoint for Virtual Machines product, which Mandiant said has been silently exploited by a Chinese APT group since 2024. CVE ...