Category: Security Advisory
Prevention and Mitigation against Unsigned vSphere Installation Bundles (VIBs) in ESXi
Researchers from cyber threat intelligence company Mandiant on Thursday 29th published information on two malware leveraging unsigned vSphere Installation Bundles (“VIBs”) to install backdoors VirtualPita…
VirtualPita, VirtualPie – new malware backdoors VMware ESXi servers to hijack virtual machines
The malicious actors found the new method of taking over the control of VMware ESXi hypervisors to control vCenter servers and virtual machines for Windows…
Let’s determine expired SSL certificates in vCenter and ESXi 6.x and 7.x
Once you have an issue with signing in to your environment or some services cannot start, the more likely root cause is the SSL cert…
VMware tools need to be patched!
VMware has released a security update to address a vulnerability in Tools. A remote attacker could likely exploit the vulnerability to take control of an…
VMware fixed Security Token Service (STS) error with new patch – VMware vCenter Server 7.0 Update 3g
As we reported in this article, there was a bug in VMware vCenter Server 7.0 Update 3f, causing installation hung on 93%. An issue with…
Patching time! VMware released an update for vCenter Server and ESXi -> 7.0 Update 3f.
vCenter server: NOTE: If your source system contains hosts of versions between ESXi 7.0 Update 2 and Update 3c, and Intel drivers, before upgrading to…
New ransomware is targeting Windows and Linux VMware ESXi servers – RedAlert/N13V
The ransomware was discovered by MalwareHunterTeam, who tweeted images of the malicious actor’s data leak webpage. The ransomware was called RedAlert as it has this…
Black Basta Ransomware is now actively targeting VMware ESXi servers – Protect your environment!
What is Black Basta? Researchers from Uptycs reported that Linux version of Black Basta ransomware is now actively targeting ESXi servers, previously targeting Windows systems….
Critical Severity – VMSA-2022-0014 – VMware Workspace ONE Access, Identity Manager and vRealize Automation
VMware published CRITICAL Severity VMSA-2022-0014. A critical vulnerabilities (CVE-2022-22972 and CVE-2022-22973) were discovered for: VMware Workspace ONE Access (Access) 20.10.0.1, 20.10.0.0, 21.08.0.1, 21.08.0.0 VMware Identity…
VMware vCenter Server 7.0 Update 3e is now available!
VMware released a new update for vCenter Server 7.0 -> vCenter Server 7.0 Update 3e ISO Build 19717403. This maintenance update delivers new features and fixes…