Microsoft warns VMware ESXi users of ongoing ransomware attacks exploiting CVE-2024-37085, granting full admin control to attackers.
Microsoft advises VMware ESXi users to take immediate action against ongoing attacks by ransomware groups that exploit CVE-2024-37085, granting full admin control of servers. Attackers affiliated with Storm-0506, Storm-1175, Octo Tempest, and Manatee Tempest have exploited the flaw for months. Full hypervisor control allows attackers to encrypt file systems and take down servers.
July 29, 2024
3 Articles