ESXi Archives - Securezoo

Attackers exploit VMware ESXi RCE vulnerability to deliver ESXiArgs ransomware

Cybersecurity Attacks, Ransomware / By Frank Crast / February 7, 2023 / CERT-FR, CVE-2021-21974, Cyberattack, ESXi, ESXiArgs, OpenSLP, VMware

French authorities and security researchers warn attackers have been exploiting two-year old VMware ESXi remote code execution (RCE) vulnerability (CVE-2021-21974) to deliver ESXiArgs ransomware.

Report: Linux malware and cloud misconfigurations top cybersecurity threats

Cloud Security, Container Security, Cybersecurity Attacks, Malware / By Frank Crast / September 5, 2022 / BlackCat, Cheerscrypt, Cloud, Containers, Conti, ESXi, Linux, LockBit, LockBit 2.0, MaaS, malware, RaaS, Ransomware, Trend Micro

A new report published by Trend Micro revealed that Linux malware and cloud misconfigurations make up some of the top cybersecurity threats facing organizations over the first half of 2022.

VMware releases Critical ESXi, Workstation, and Fusion security updates

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / February 17, 2022 / CVE-2021-22040, CVE-2021-22041, CVE-2021-22042, CVE-2021-22043, CVE-2021-22050, ESXi, Fusion, VMware, Workstation

VMware has released Critical ESXi, Workstation, and Fusion security updates that address multiple vulnerabilities.

FBI releases Lockbit 2.0 ransomware-as-a-service IoCs

Cybersecurity Attacks, Malware / By Frank Crast / February 11, 2022 / BlackCat, encryption, ESXi, LockBit, LockBit 2.0, RaaS, Ransomware, ransomware-as-a-service, VMware

The Federal Bureau of Investigation (FBI) has released new Indicators of Compromise (IoC) details on Lockbit ransomware-as-a-service (RaaS).

VMware fixes vulnerability in VMware Workstation, Fusion and ESXi

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / January 6, 2022 / CVE-2021-22045, ESXi, Fusion, VMware, VMware workstation

VMware has issued a patch to fix a High risk vulnerability (CVE-2021-22045) in VMware Workstation, Fusion and ESXi.

Babuk ransomware: Soon to be targeting VMware and *nix systems?

Cybersecurity Attacks, Malware / By Frank Crast / August 1, 2021 / ESXi, Golang, Linux, malware, Ransomware

Cybercriminals behind Babuk ransomware announced in an underground forum that they are developing malware targeting Linux/UNIX and VMware ESXi systems.

VMware patches 2 High risk ESXi vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / July 15, 2021 / CVE-2021-21994, CVE-2021-21995, ESXi, OpenSLP, SFCB, VMware

VMware has patched authentication and denial of service vulnerabilities (CVE-2021-21994, CVE-2021-21995) that impact VMware ESXi and Cloud Foundation products.

VMware patches Critical vulnerability that exposed thousands of servers online

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / February 25, 2021 / CVE-2021-21972, CVE-2021-21974, ESXi, vcenter, VMware

VMware has patched multiple vulnerabilities, to include one Critical vulnerability (CVE-2021-21972) that has exposed thousands of servers online.

VMware security updates for ESXi, Workstation, Fusion, and Cloud Foundation (VMSA-2020-0015)

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / June 25, 2020 / Cloud, Cloud Foundation, CVE-2020-3962, CVE-2020-3963, CVE-2020-3964, CVE-2020-3965, CVE-2020-3966, CVE-2020-3967, CVE-2020-3968, CVE-2020-3969, CVE-2020-3970, CVE-2020-3971, ESXi, VMware, Workstation

VMware issued a security advisory for ten vulnerabilities that impact VMware ESXi, Workstation, Fusion and Cloud Foundation products. An attacker could exploit one of these vulnerabilities and take control of an unpatched system.

VMware patches multiple vulnerabilities in ESXi, Workstation, Fusion, VMRC and Horizon Client

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / June 1, 2020 / CVE-2020-3957, CVE-2020-3958, CVE-2020-3959, ESXi, Fusion, Horizon, VMRC, VMware, Workstation

VMware issued a security advisory for multiple vulnerabilities that impact VMware ESXi, Workstation, Fusion, VMRC and Horizon Client products. An attacker could exploit one of these vulnerabilities and take control of an unpatched system.