The day after a critical RCE flaw (CVE-2021-21972) found in a default vCenter Server plugin, opportunistic attackers began searching for publicly accessible vulnerable systems. CNAME-based tracking increasingly used to bypass browsers’ anti-tracking defenses. CNAME cloaking introduces serious security and privacy issues. The report explores how the global pandemic forced many employees to quickly become a remote workforce and confined consumers to their homes. The global identity verification market, which was already growing rapidly, is now booming.
Source: https://www.helpnetsecurity.com/2021/02/28/week-in-review-kali-linux-2021-1-cname-based-tracking-vmware-vcenter-servers-under-attack/