Marcel SIneM(S)USJan 30
#BSI @bsi warnt vor vielen verwundbaren #VMware-ESXi-Servern im Netz | Security https://www.heise.de/news/BSI-warnt-vor-vielen-verwundbaren-VMware-ESXi-Servern-im-Netz-11155196.html #Patchday @certbund #VMwareESXi #Virtualisierung #virtualization
BSI warnt vor vielen verwundbaren VMware-ESXi-Servern im Netz

Das CERT-Bund des BSI warnt vor rund 2500 aus dem Internet erreichbaren Management-Interfaces von VMware-ESXi-Servern mit Sicherheitslecks.

heise online
Nick DangerDec 18
Is anyone using Packer and VMware and Rocky Linux? I'm having an issue with Rocky 10 and the packer boot. Using the example boot command here https://docs.rockylinux.org/10/guides/automation/templates-automation-packer-vsphere/ I end up with a boot box that looks like "xt ip=[blah]" because I think grub changed and <tab> isn't the right key stroke to edit the boot, the 'e' from 'text' is. Thats why I get just 'xt' and what follows. I think I need to then send a control-x to boot. Maybe? Anyone? Anyone? Bueller? My rocky 9 packer build still works great :-) #rockylinux #packer #vmwareESXi #grub2
Automatic Template Creation - Packer - Ansible - VMware vSphere - Documentation

The DefendOps DiariesAug 11, 2025

Profero just turned the tables on DarkBit ransomware by exploiting a weak encryption flaw. Their breakthrough not only freed crucial data—it points to new ways to fight cyber threats. Curious how they did it?

https://thedefendopsdiaries.com/proferos-innovative-decryption-of-darkbit-ransomware/

#profero
#darkbitransomware
#cybersecurity
#ransomwaredecryption
#vmwareesxi

Profero's Innovative Decryption of DarkBit Ransomware

Profero decrypts DarkBit ransomware, showcasing innovative cybersecurity strategies against geopolitical cyber threats.

The DefendOps Diaries
Rene RobichaudJul 25, 2025

Fire Ant Hackers Target VMware ESXi and vCenter Flaws to Infiltrate Organizations
https://gbhackers.com/fire-ant-hackers-target-vmware-esxi-and-vcenter-flaws/

#Infosec #Security #Cybersecurity #CeptBiro #FireAnt #VMwareESXi #vCenter #InfiltrateOrganizations

Fire Ant Hackers Target VMware ESXi and vCenter Flaws to Infiltrate Organizations

Cybersecurity firm Sygnia has been tracking and mitigating a sophisticated espionage operation dubbed Fire Ant, which zeroes.

GBHackers Security | #1 Globally Trusted Cyber Security News Platform
The DefendOps DiariesMay 19, 2025

Modified KeePass is now a Trojan in disguise—loading hidden malware and even triggering ransomware on VMware ESXi servers. How did cybercriminals make this attack nearly undetectable? Dive into the details.

https://thedefendopsdiaries.com/revised-analysis-of-keepass-exploitation-and-ransomware-deployment/

#keepass
#ransomware
#malvertising
#vmwareesxi
#cybersecurity

RedRobotMay 8, 2025

Manufacturing sector faces 41% rise in VMware ESXi-targeted ransomware since 2020, with attacks causing $1.9M daily losses. ❤️ #CISAadvisories #DarkVault #hypervisorvulnerabilities #manufacturingcybersecurity #ransomware #runtimesecurity #VirtualPatching #VMwareESXi #redrobot

https://redrobot.online/2025/05/vmware-esxi-hypervisor-vulnerabilities-drive-41-surge-in-manufacturing-ransomware-attacks-since-2020/

VMware ESXi Hypervisor Vulnerabilities Drive 41% Surge in Manufacturing Ransomware Attacks Since 2020

Manufacturing sector faces 41% rise in VMware ESXi-targeted ransomware since 2020, with attacks causing $1.9M daily losses. Recent DarkVault exploits highlight

Le Red Robot
PUPUWEB BlogApr 19, 2025

🔥 VMware ESXi 8.0 Update 3e brings back the free version after Broadcom's backlash! Is the change a win for users? Find out what this means for your virtualization setup #VMwareESXi

https://pupuweb.com/vmware-esxi-8-0-update-3e-free-version-returns-after-broadcom-backlash/

VMware ESXi 8.0 Update 3e Free Version Returns After Broadcom Backlash - PUPUWEB

Problem Description After Broadcom’s acquisition of VMware in late 2023, the company abruptly discontinued all perpetual licenses and the popular free

PUPUWEB
Marcel SIneM(S)USMar 9, 2025

In der #Schweiz 🇨🇭 sind etwas mehr als 130 Instanzen betroffen (Stand: gestern)

Attacken auf #VMware #ESXi: Immer noch zehntausende Server verwundbar | Security https://www.heise.de/news/Attacken-auf-VMware-ESXi-Immer-noch-zehntausende-Server-verwundbar-10307632.html #Patchday #VMwareESXi

Attacken auf VMware ESXi: Immer noch zehntausende Server verwundbar

Sicherheitsforscher warnen, dass trotz laufender Angriffe weltweit noch mehr als 40.000 Instanzen nicht gepatcht sind. Davon ist auch Deutschland betroffen.

heise online
Marcel SIneM(S)USMar 7, 2025
Kritische Lücke in #VMware #ESXi, #Fusion und #Workstation wird missbraucht | Security https://www.heise.de/news/Kritische-Luecke-in-VMware-ESXi-Fusion-und-Workstation-wird-missbraucht-10303639.html #Patchday #Virtualisierung #virtualization #VMwareESXi #VMwareFusion #VMwareWorkstation
Kritische Lücke in VMware ESXi, Fusion und Workstation wird missbraucht

Broadcom warnt vor teils kritischen Sicherheitslecks in VMware ESXi, Fusion und Workstation. Angreifer missbrauchen sie bereits.

heise online
Matt WillemsenMar 8, 2024
VMware sandbox escape bugs are so critical, patches are released for end-of-life products
https://arstechnica.com/security/2024/03/vmware-issues-patches-for-critical-sandbox-escape-vulnerabilities/ #security #vulnerabilities #VMwareESXi Workstation, #Fusion #CloudFoundation #end—of—life #patches
VMware sandbox escape bugs are so critical, patches are released for end-of-life products

VMware ESXi, Workstation, Fusion, and Cloud Foundation all affected.

Ars Technica