Category: Security Advisory
A vulnerability has been discovered in VMware’s vRealize Log Insight
Multiple vulnerabilities in VMware vRealize Log Insight were privately reported to VMware. These vulnerabilities affect users of VMware’s vRealize Log Insight, a log collection and…
Recently, over 45,000 VMware ESXi systems reached their end of life.
VMware ESXi 6.5 and ESXi 6.7 reached end-of-life on October 15, 2022, and will no longer receive technical support or security updates, putting the software…
Prevention and Mitigation against Unsigned vSphere Installation Bundles (VIBs) in ESXi
Researchers from cyber threat intelligence company Mandiant on Thursday 29th published information on two malware leveraging unsigned vSphere Installation Bundles (“VIBs”) to install backdoors VirtualPita…
VirtualPita, VirtualPie – new malware backdoors VMware ESXi servers to hijack virtual machines
The malicious actors found the new method of taking over the control of VMware ESXi hypervisors to control vCenter servers and virtual machines for Windows…
Let’s determine expired SSL certificates in vCenter and ESXi 6.x and 7.x
Once you have an issue with signing in to your environment or some services cannot start, the more likely root cause is the SSL cert…
VMware tools need to be patched!
VMware has released a security update to address a vulnerability in Tools. A remote attacker could likely exploit the vulnerability to take control of an…
VMware fixed Security Token Service (STS) error with new patch – VMware vCenter Server 7.0 Update 3g
As we reported in this article, there was a bug in VMware vCenter Server 7.0 Update 3f, causing installation hung on 93%. An issue with…
Patching time! VMware released an update for vCenter Server and ESXi -> 7.0 Update 3f.
vCenter server: NOTE: If your source system contains hosts of versions between ESXi 7.0 Update 2 and Update 3c, and Intel drivers, before upgrading to…
New ransomware is targeting Windows and Linux VMware ESXi servers – RedAlert/N13V
The ransomware was discovered by MalwareHunterTeam, who tweeted images of the malicious actor’s data leak webpage. The ransomware was called RedAlert as it has this…
Black Basta Ransomware is now actively targeting VMware ESXi servers – Protect your environment!
What is Black Basta? Researchers from Uptycs reported that Linux version of Black Basta ransomware is now actively targeting ESXi servers, previously targeting Windows systems….