Ransomware Rampage: VMware’s ESXi Vulnerability Under Siege!
Ransomware gangs are exploiting a VMware ESXi vulnerability, allowing full administrative access to hypervisors. Microsoft reports active attacks using this flaw, tracked as CVE-2024-37085. Apply the patch now before your servers become a cybercriminal’s playground!

Hot Take:
If your VMware ESXi hypervisors were a house, ransomware gangs just found a way to pick the lock, open the door, and throw a wild party in your living room. Time to call the locksmith (aka, install that patch)!
Key Points:
- Ransomware gangs are exploiting a vulnerability (CVE-2024-37085) in VMware ESXi hypervisors.
- This flaw allows attackers to gain full administrative permissions.
- Microsoft has observed active exploitation and urges immediate patching.
- Notable ransomware groups involved include Storm-0506, Storm-1175, Octo Tempest, and Manatee Tempest.
- Incidents targeting ESXi hypervisors have more than doubled over the past three years.
Already a member? Log in here