Guru3D.com

Dell warns of RecoverPoint for VMs zero-day (exploited since mid-2024)

If you’re running Dell RecoverPoint for Virtual Machines in a VMware setup, this is one of those “drop what you’re doing and check versions” moments. Dell is warning about CVE-2026-22769, a ...
CSOonline

Chinese hackers exploited zero-day Dell RecoverPoint flaw for 1.5 years

A suspected Chinese espionage group exploited hardcoded admin credentials in Dell RecoverPoint for Virtual Machines to deploy web shells and maintain persistence in enterprise VMware environments. For ...
heise online

Patch now! Attackers are targeting Dell RecoverPoint for Virtual Machines

Important security updates have been released for Dell RecoverPoint for Virtual Machines and Avamar Server, among others. Attacks are already occurring. State-sponsored Chinese hackers from the ...
Hosted on MSN

CISA gives federal agencies three days to patch actively exploited Dell bug

Uncle Sam's cyber defenders have given federal agencies just three days to patch a maximum-severity Dell bug that's been under active exploitation since at least mid-2024.… CISA this week added the ...
Hosted on MSN

A worrying Dell zero-day flaw has reportedly gone unpatched for years

Dell patched critical flaw in RecoverPoint for Virtual Machines caused by hardcoded credentials Exploited as a zero-day since mid-2024 by Chinese state-sponsored group UNC6201 Attackers deployed new ...
Bleeping Computer

Chinese hackers exploiting Dell zero-day flaw since mid-2024

A suspected Chinese state-backed hacking group has been quietly exploiting a critical Dell security flaw in zero-day attacks that started in mid-2024. Security researchers from Mandiant and the Google ...
Dark Reading

Dell's Hard-Coded Flaw: A Nation-State Goldmine

A Chinese nation-state threat actor targeted a Dell hard-coded credential vulnerability for two years, emphasizing the danger of what happens when a product comes pre-compromised. Yesterday, Google ...
Security

CISA’s 3-Day Patch Order on Dell RecoverPoint Signals Broader Enterprise Risk

The Cybersecurity and Infrastructure Security Agency (CISA) has given federal civilian agencies three days to fix a critical security flaw in Dell Technologies’ RecoverPoint for Virtual Machines after ...
Infosecurity-magazine.com

Chinese APT Group Exploits Dell Zero-Day for Two Years

Dell has released a patch for a critical zero-day vulnerability in its RecoverPoint for Virtual Machines product, which Mandiant said has been silently exploited by a Chinese APT group since 2024. CVE ...
Threat Post

Six Vulnerabilities Found in Dell EMC’s Disaster Recovery System, One Critical

A pen-tester has found five vulnerabilities in Dell EMC RecoverPoint devices, including a critical RCE that could allow total system compromise. A pen-tester has found six vulnerabilities in Dell EMC ...
Bleeping Computer

Latest RecoverPoint for Virtual Machines news

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their systems within three days against a maximum-severity Dell vulnerability that has been under ...