Head Topics

Ransomware gangs are loving this dumb but deadly make-me-admin ESXi vulnerability

South Africa News News

Ransomware gangs are loving this dumb but deadly make-me-admin ESXi vulnerability
South Africa Latest News,South Africa Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 51 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 24%
  • Publisher: 61%

Get those patches applied – all the big dogs are abusing it

Do you have your VMware ESXi hypervisor joined to Active Directory? Well, the latest news from Microsoft serves as a reminder that you might not want to do that given the recently patched vulnerability that has security experts deeply concerned.

The"how" of the exploit is what caused such a stir in cyber circles. There are three ways of exploiting CVE-2024-37085, but the underlying logic flaw in ESXi enabling them is what's attracted so much attention. Jake Williams, VP of research and development at Hunter Strategy and IANS faculty member, was critical of Broadcom's approach to security, especially with regard to the severity it assigned the vulnerability.:"So you create an AD group 'ESX Admins' and by default, VMware is just like 'oh, so you're the admin now?'

"Why are ESX servers joined with an active directory in the first place? Because it is convenient to manage admin access to servers using a centralized platform in large corporations," Dr Martin J Kraemer, security awareness advocate at KnowBe4, told"This is very common but also creates challenges. In many environments, the AD itself might run on a VM. Cold boot can be a nightmare. A chicken and egg problem.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

South Africa Latest News, South Africa Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Russia’s FIN7 is peddling its EDR-nerfing malware to ransomware gangsRussia’s FIN7 is peddling its EDR-nerfing malware to ransomware gangsMajor vendors' products scuppered by novel techniques
Read more »

Affirm admits customer info pwned in ransomware raid at Evolve BankAffirm admits customer info pwned in ransomware raid at Evolve BankNumber of partners acknowledging data theft continues to rise
Read more »

Patelco banking services AWOL amid ransomware ruckusPatelco banking services AWOL amid ransomware ruckusLate fees? Don't worry, the credit union has you covered
Read more »

Ransomware scum who hit Indonesian government apologizes, hands over encryption keyRansomware scum who hit Indonesian government apologizes, hands over encryption keyBrain Cipher was never getting the $8 million it demanded anyway
Read more »

Avast secretly gave DoNex ransomware decryptors to victims before crims vanishedAvast secretly gave DoNex ransomware decryptors to victims before crims vanishedGood riddance to another pesky tribe of miscreants
Read more »

Eldorado ransomware-as-a-service gang targets Linux, Windows systemsEldorado ransomware-as-a-service gang targets Linux, Windows systemsUS orgs bear the brunt of attacks by probably-Russian crew
Read more »



Render Time: 2025-08-27 11:30:22