Category: Security Advisory

Posted in Security Advisory

Recently, over 45,000 VMware ESXi systems reached their end of life.

VMware ESXi 6.5 and ESXi 6.7 reached end-of-life on October 15, 2022, and will no longer receive technical support or security updates, putting the software…

Continue Reading
Posted in Security Advisory

Prevention and Mitigation against Unsigned vSphere Installation Bundles (VIBs) in ESXi

Researchers from cyber threat intelligence company Mandiant on Thursday 29th published information on two malware leveraging unsigned vSphere Installation Bundles (“VIBs”) to install backdoors VirtualPita…

Continue Reading
Posted in Security Advisory

VirtualPita, VirtualPie – new malware backdoors VMware ESXi servers to hijack virtual machines

The malicious actors found the new method of taking over the control of VMware ESXi hypervisors to control vCenter servers and virtual machines for Windows…

Continue Reading
Posted in Security Advisory

Let’s determine expired SSL certificates in vCenter and ESXi 6.x and 7.x

Once you have an issue with signing in to your environment or some services cannot start, the more likely root cause is the SSL cert…

Continue Reading
Posted in Security Advisory

VMware tools need to be patched!

VMware has released a security update to address a vulnerability in Tools. A remote attacker could likely exploit the vulnerability to take control of an…

Continue Reading
Posted in Security Advisory vSphere

VMware fixed Security Token Service (STS) error with new patch – VMware vCenter Server 7.0 Update 3g

As we reported in this article, there was a bug in VMware vCenter Server 7.0 Update 3f, causing installation hung on 93%. An issue with…

Continue Reading
Posted in Security Advisory

Patching time! VMware released an update for vCenter Server and ESXi -> 7.0 Update 3f.

vCenter server: NOTE: If your source system contains hosts of versions between ESXi 7.0 Update 2 and Update 3c, and Intel drivers, before upgrading to…

Continue Reading
Posted in Security Advisory

New ransomware is targeting Windows and Linux VMware ESXi servers – RedAlert/N13V

The ransomware was discovered by MalwareHunterTeam, who tweeted images of the malicious actor’s data leak webpage. The ransomware was called RedAlert as it has this…

Continue Reading
Posted in Security Advisory

Black Basta Ransomware is now actively targeting VMware ESXi servers – Protect your environment!

What is Black Basta? Researchers from Uptycs reported that Linux version of Black Basta ransomware is now actively targeting ESXi servers, previously targeting Windows systems….

Continue Reading
Posted in Security Advisory

Critical Severity – VMSA-2022-0014 – VMware Workspace ONE Access, Identity Manager and vRealize Automation

VMware published CRITICAL Severity VMSA-2022-0014. A critical vulnerabilities (CVE-2022-22972 and CVE-2022-22973) were discovered for: VMware Workspace ONE Access (Access) 20.10.0.1, 20.10.0.0, 21.08.0.1, 21.08.0.0VMware Identity Manager…

Continue Reading