Eldorado Ransomware Dissection
Security researchers have uncovered a new strain dubbed as Eldorado ransomware a RaaS, which has swiftly gained notoriety, targeting both Windows and VMware ESXi virtual machines. Eldorado, written in the…
VMware patches vulnerabilities in Vcenter Server and ESXi
VMware issued patches to address a code execution vulnerability, tracked as CVE-2022-31680 with CVSS score of 7.2 in vCenter Server. The security issue is an unsafe deserialization vulnerability that resides…
VMware issues emergency notice about UNC3886
VMware releases emergency mitigations and guidance for its vSphere customers after China based threat actor using a troubling technique to install multiple persistent backdoors on ESXi hypervisors. The threat actor…
RedAlert Ransomware
A new ransomware operation seen encrypting both Windows and Linux VMWare ESXi servers dubbed as RedAlert based on a string used in the ransom note. Alternatively, it has been noted…
Posted inSecurity
VMware Patches Vulnerabilities Reported During Tianfu Cup
VMware is urging customers to immediately patch vulnerabilities in ESXi, Workstation, Fusion and Cloud Foundation running in on-premises or co-located settings. The patches fix a total of five CVEs in…
VMware Fixes Heap Overflow Bug
VMware released security updates to address a heap-overflow vulnerability, tracked as CVE-2021-22045, in its Workstation, Fusion and ESXi products. VMware has addressed the vulnerability with the release of ESXi670-202111101-SG, ESXi650-202110101-SG,…
Python Ransomware Encrypts VMWare
A recently attack has been observer employing a Python-based ransomware variant to target an organization’s VMware ESXi server and encrypt all virtual disks. The attack involved the use of a…
BlackMatter Linux version targets ESXi
The BlackMatter ransomware gang has implemented a Linux encryptor to targets VMware ESXi virtual machine platform. This is the last ransomware in order of time that is able to target…