Microsoft warns VMware ESXi users of ongoing ransomware attacks exploiting CVE-2024-37085, granting full admin control to attackers.

Microsoft advises VMware ESXi users to take immediate action against ongoing attacks by ransomware groups that exploit CVE-2024-37085, granting full admin control of servers. Attackers affiliated with Storm-0506, Storm-1175, Octo Tempest, and Manatee Tempest have exploited the flaw for months. Full hypervisor control allows attackers to encrypt file systems and take down servers.

July 29, 2024

3 Articles

Articles

Ars Technica

CSO Online

CRN

-- show less --

Microsoft warns VMware ESXi users of ongoing ransomware attacks exploiting CVE-2024-37085, granting full admin control to attackers.

Articles

Further Reading

Related Stories