Steve Zurier 
A string of attacks on VMware ESXi servers were launched by the Play ransomware group, best known for its double-extortion tactics. In a July 19 blog post, Trend Micro researchers said most of the attacks have been concentrated in the United… Source link
A high-severity VMware Fusion 13.x bug that can let a bad actor with only standard user privileges execute arbitrary code in the Fusion application was patched Tuesday by Broadcom. Security pros said it’s a significant vulnerability because of… Source link
VMware on March 5 issued patches for a pair of flaws they rated as “critical” and in the “important” severity range for VMware ESXi, Workstation, and Fusion. VMware explained in an advisory to its customers that ESXi, Workstation, and Fusion contain a “use-after-free” vulnerability in the XHCI USB controller filed with NIST as CVE-2024-22252. VMware … Read more
A new ransomware tool called “MrAgent” operates as a binary designed to run primarily on VMware ESXi hypervisors with the sole purpose of automating and tracking the deployment of ransomware across large environments with multiple hypervisors. In a Feb. 14 blog post, Trellix researchers identified the gang responsible, the RansomHouse Group, as a ransomware-as-a-service operation … Read more
VMware on Tuesday issued an advisory on two vulnerabilities — one of them critical — for Aria Operations for Networks and said updates are now available for security teams looking to patch. Aria Operations for Networks comes in both on-prem and cloud-based version and aims to help security teams build a secure network infrastructure across … Read more