ESXi - VMVirtualMachine.com

Ransomware Attacks Exploit Vulnerabilities in VMware ESXi in an Alarming Pattern

May 23, 2024 by vm_admin

Ransomware attacks targeting VMware ESXi infrastructure follow a set pattern, with threat actors gaining access through phishing attacks and known vulnerabilities, escalating privileges to compromise ESXi hosts or vCenter, and deploying ransomware. Organizations are advised to implement monitoring and logging, robust backup mechanisms, strong authentication measures, network restrictions, and hardening of the environment to mitigate … Read more

VMware ESXi Shell Service Exploit on Hacking Forums: Patch Now

April 22, 2024 by GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

A new exploit targeting VMware ESXi Shell Service has been discovered and is circulating on various hacking forums. This vulnerability poses a significant risk to organizations using VMware for their virtual environments, potentially allowing unauthorized access and control over virtual machines. The exploit, which explicitly targets the VMware ESXi Shell Service, was reported in a … Read more

Hosting firm’s VMware ESXi servers hit by new SEXi ransomware

April 15, 2024 by Lawrence Abrams

Update 4/5/24: More information added about discovered Windows encryptors. Chilean data center and hosting provider IxMetro Powerhost has suffered a cyberattack at the hands of a new ransomware gang known as SEXi, which encrypted the company’s VMware ESXi servers and backups. PowerHost is a data center, hosting, and interconnectivity company with locations in the USA, … Read more

New VMware ESXi to Proxmox VE Import Wizard Available

March 28, 2024 by ServeTheHome

Proxmox VE 8.1.8 Datacenter Storage Add With ESXi This week, Proxmox VE has a new feature we hoped for a few quarters ago. The team behind Proxmox VE has a new import wizard to help folks migrate from VMware ESXi to Proxmox VE. New VMware ESXi to Proxmox VE Import Wizard Available Currently this is … Read more

Proxmox gives VMware ESXi users a place to go after Broadcom kills free version

March 28, 2024 by Ars Technica

Broadcom has made sweeping changes to VMware’s business since acquiring the company in November 2023, killing off the perpetually licensed versions of VMware’s software and instituting large-scale layoffs. Broadcom executives have acknowledged the “unease” that all of these changes have created among VMware’s customers and partners but so far haven’t been interested in backtracking. Among … Read more

Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers

March 26, 2024 by darkreading.com

The Agenda ransomware group has been ramping up infections worldwide, thanks to a new and improved variant of its virtual machine-focused ransomware. Agenda (aka Qilin and Water Galura) was first spotted in 2022. Its first, Golang-based ransomware was used against an indiscriminate range of targets: in healthcare, manufacturing, and education, from Canada to Colombia and … Read more

VMware patches critical, important bugs in ESXi, Workstation and Fusion

March 7, 2024 by Steve Zurier

VMware on March 5 issued patches for a pair of flaws they rated as “critical” and in the “important” severity range for VMware ESXi, Workstation, and Fusion. VMware explained in an advisory to its customers that ESXi, Workstation, and Fusion contain a “use-after-free” vulnerability in the XHCI USB controller filed with NIST as CVE-2024-22252. VMware … Read more

VMware Fixes Critical ESXi, Workstation and Fusion Flaws

March 6, 2024 by Ankur Chadda

VMware is issuing patches for its ESXi, Workstation and Fusion products to fix a pair of flaws that, if exploited, could each allow attackers with local administrative privileges on virtual machines to execute code as the virtual machine’s VMX process running on the host. The use-after-free flaws (CVE-2024-22252 and CVE-2024-22253) are two of four vulnerabilities … Read more

VMware fixes critical sandbox escape flaws in ESXi, Workstation, and Fusion

March 6, 2024 by Bill Toulas

VMware released security updates to fix critical sandbox escape vulnerabilities in VMware ESXi, Workstation, Fusion, and Cloud Foundation products, allowing attackers to escape virtual machines and access the host operating system. These types of flaws are critical as they could permit attackers to gain unauthorized access to the host system where a hypervisor is installed … Read more

VMware Issues Security Patches for ESXi, Workstation, and Fusion Flaws

March 6, 2024 by The Hacker News

Mar 06, 2024NewsroomSoftware Security / Vulnerability VMware has released patches to address four security flaws impacting ESXi, Workstation, and Fusion, including two critical flaws that could lead to code execution. Tracked as CVE-2024-22252 and CVE-2024-22253, the vulnerabilities have been described as use-after-free bugs in the XHCI USB controller. They carry a CVSS score of 9.3 … Read more