Category: Security Advisory

Posted in Security Advisory

Someone is encrypting an unpatched VMware ESXi 6.X servers that are open to the internet.

Warnings are being issued by administrators, hosting providers, and the French Computer Emergency Response Team (CERT-FR) that attackers are actively targeting VMware ESXi servers that…

Continue Reading
Posted in Security Advisory

VMware ESXi 7.0 Update 3j has been released today!

This patch addresses the following issues: Build Details Download Filename:VMware-ESXi-7.0U3j-21053776-depotBuild:21053776Download Size:379.0 MBmd5sum:7f67b843759aacc1a05d2074149bcc9bsha256checksum:ddff86dcdbe00180b7c6281770715a40c597c12f8c60ecee980167c25ada45eaHost Reboot Required:YesVirtual Machine Migration or Shutdown Required:Yes Components ComponentBulletinCategorySeverityESXi Component – core ESXi VIBsESXi_7.0.3-0.70.21053776BugfixCriticalESXi…

Continue Reading
Posted in Security Advisory

A vulnerability has been discovered in VMware’s vRealize Log Insight

Multiple vulnerabilities in VMware vRealize Log Insight were privately reported to VMware. These vulnerabilities affect users of VMware’s vRealize Log Insight, a log collection and…

Continue Reading
Posted in Security Advisory

Recently, over 45,000 VMware ESXi systems reached their end of life.

VMware ESXi 6.5 and ESXi 6.7 reached end-of-life on October 15, 2022, and will no longer receive technical support or security updates, putting the software…

Continue Reading
Posted in Security Advisory

Prevention and Mitigation against Unsigned vSphere Installation Bundles (VIBs) in ESXi

Researchers from cyber threat intelligence company Mandiant on Thursday 29th published information on two malware leveraging unsigned vSphere Installation Bundles (“VIBs”) to install backdoors VirtualPita…

Continue Reading
Posted in Security Advisory

VirtualPita, VirtualPie – new malware backdoors VMware ESXi servers to hijack virtual machines

The malicious actors found the new method of taking over the control of VMware ESXi hypervisors to control vCenter servers and virtual machines for Windows…

Continue Reading
Posted in Security Advisory

Let’s determine expired SSL certificates in vCenter and ESXi 6.x and 7.x

Once you have an issue with signing in to your environment or some services cannot start, the more likely root cause is the SSL cert…

Continue Reading
Posted in Security Advisory

VMware tools need to be patched!

VMware has released a security update to address a vulnerability in Tools. A remote attacker could likely exploit the vulnerability to take control of an…

Continue Reading
Posted in Security Advisory vSphere

VMware fixed Security Token Service (STS) error with new patch – VMware vCenter Server 7.0 Update 3g

As we reported in this article, there was a bug in VMware vCenter Server 7.0 Update 3f, causing installation hung on 93%. An issue with…

Continue Reading
Posted in Security Advisory

Patching time! VMware released an update for vCenter Server and ESXi -> 7.0 Update 3f.

vCenter server: NOTE: If your source system contains hosts of versions between ESXi 7.0 Update 2 and Update 3c, and Intel drivers, before upgrading to…

Continue Reading