Malware & Threats VMware Confirms Live Exploits Hitting Just-Patched Security Flaw VMware updates a critical-level bulletin: “VMware has confirmed that exploitation of CVE-2023-20887 has occurred in the wild.” Ryan NaraineJune 20, 2023
Cyberwarfare Chinese Cyberspies Caught Exploiting VMware ESXi Zero-Day Mandiant has observed a Chinese cyberespionage group exploiting a VMware ESXi zero-day vulnerability for privilege escalation. Ionut ArghireJune 13, 2023
Application Security VMware Plugs Critical Flaws in Network Monitoring Product VMware ships urgent patches to cover security defects that expose businesses to remote code execution attacks. Ryan NaraineJune 7, 2023
Vulnerabilities Exploitation of Critical Vulnerability in End-of-Life VMware Product Ongoing Wallarm Detect warns of ongoing exploitation of a critical vulnerability in VMware Cloud Foundation and NSX Data Center for vSphere (NSX-V). Ionut ArghireMarch 7, 2023
Vulnerabilities VMware Plugs Critical Carbon Black App Control Flaw VMware issues a critical fix for a vulnerability that allows hacker to gain full access to the underlying server operating system. Ryan NaraineFebruary 21, 2023
Ransomware Surge in ESXiArgs Ransomware Attacks as Questions Linger Over Exploited Vulnerability Hundreds of new servers were compromised in the past days as part of ESXiArgs ransomware attacks, but it’s still unclear which vulnerability is being... Eduard KovacsFebruary 16, 2023
Cybercrime ESXiArgs Ransomware Hits Over 3,800 Servers as Hackers Continue Improving Malware More than 3,800 servers around the world have been compromised in recent ESXiArgs ransomware attacks, which also include an improved process. Eduard KovacsFebruary 9, 2023
Ransomware VMware Says No Evidence of Zero-Day Exploitation in ESXiArgs Ransomware Attacks ESXiArgs ransomware attacks continue, with thousands of unpatched ESXi servers compromised within a few days via CVE-2021-21974. Eduard KovacsFebruary 7, 2023
Malware & Threats VMware ESXi Servers Targeted in Ransomware Attack via Old Vulnerability Unpatched and unprotected VMware ESXi servers worldwide have been targeted in a ransomware attack exploiting a vulnerability patched in 2021. Eduard KovacsFebruary 6, 2023
Cloud Security VMware Plugs Critical Code Execution Flaws VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system. Ryan NaraineJanuary 24, 2023