Ransomware Gangs are Abusing VMWare ESXi Exploits to Encrypt Virtual Hard Disks

Ransomware attack

Two CVE’s associated with VMWare ESXi are being exploited in the Wild. One major ransomware gang abuses vulnerabilities on the ESXi platform to take over virtual machines deployed in enterprise environments by encrypting their virtual hard drives. CVE’s 2019-5544 and 2020-3992 impact the Service Location Protocol (SLP), used by devices on the same network to […]

Risk Crew