‘VMware ESXi ransomware problem worsening’
CrowdStrike reports that ransomware criminals are increasingly attacking VMware's ESXi hypervisor. Many systems are susceptible, mainly due to a lack of security tools.
CrowdStrike's blog is the third in the series on so-called hypervisor jackpotting. In February, thousands of attacks on ESXi se... Read more
Emergency update VMware ESXi fixes boot issues Windows Sever 2022 VMs
VMware has released an emergency update for an issue around booting Windows Server 2022 vm's on vSphere ESXi servers. The problem occurs after installing the recent Patch Tuesday KB5022842 update.
After the Patch Tuesday update, Windows Server 2022 vm's that have Secure Boot enabled were found t... Read more
Recovery scripts no longer work against ESXiArgs ransomware
Cyber criminals recently modified the ESXi ransomware against scripts that managed to recover affected servers. The new version encrypts 50 percent of all files starting at 128 MB, making recovery operations nearly impossible. This writes Bleeping Computer.
The recent ransomware attack on VMware... Read more
U.S. CISA publishes recovery option for ESXiArgs attack
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently released a script that can be used to restore servers affected by the ESXiArgs ransomware. The cybersecurity agency made this script available on GitHub.
The published CISA ESXiArgs-Recover script from the U.S. government'... Read more
Global ransomware attack on thousands of VMware ESXi servers
Thousands of VMware ESXi servers worldwide were hit by a ransomware attack this weekend. The attack in question uses a two-year-old vulnerability for this type of servers, according to the French Computer Emergency Response Team (CERT-FR).
According to the French cybersecurity watchdog, a ransom... Read more
Google Cloud now supports VMware ESXi hypervisor
Google is now offering support for the VMware EXSi hypervisor for its Google Cloud Engine.
According to the announcement by Google Cloud on its Open Source blog, end users can now choose the VMware ESXi hypervisor for running the Google Cloud Engine. The latter solution could previously only r... Read more
Update: VMware collects data through ESXi-Arm Fling hypervisor
VMware's ESXi-Arm Fling Arm hypervisor provides monitoring data to VMware since the latest update. The hypervisor shares diagnostic data once a week.
ESXi-Arm Fling is a hypervisor for Arm-based processors in public cloud environments, such as the Ampere Ultra processors. The hypervisor is expe... Read more
New Python ransomware aims for VMs hosted on ESXi hypervisor
Sophos Group researchers released details concerning new ransomware written in Python that attackers deploy to compromise and encrypt virtual machines hosted on an VMware ESXi hypervisor.
The ransomware attack was first discovered at 12:30 am on Sunday when those behind the attack breached into ... Read more