CSOonline

Chinese cyberspies exploited critical VMware vCenter flaw undetected for 1.5 years

In October, VMware fixed a critical remote code execution vulnerability in its vCenter Server (CVE-2023-34048) and Cloud Foundation enterprise products that are used to manage virtual machines across ...
heise online

VMware vCenter: Attackers from the network can infiltrate malicious code

Broadcom plugs several security holes in VMware vCenter. In the worst case, attackers can smuggle in and execute malicious code from the network. VMware vCenter Server 8.0 and 7.0 as well as VMware ...
ZDNet

More than 6,700 VMware servers exposed online and vulnerable to major new bug

More than 6,700 VMware vCenter servers are currently exposed online and vulnerable to a new attack that can allow hackers to take over unpatched devices and effectively take over companies' entire ...
Network World

Chinese cyberspies target VMware vSphere for long-term persistence

CISA and the NSA warn that Chinese state-sponsored attackers are deploying malware dubbed BRICKSTORM on VMware servers to perform lateral movement inside victim networks. Chinese state-sponsored ...
TechRadar

Hackers have begun scanning for vulnerable VMware vCenter servers

In a not entirely unexpected development, threat actors have started looking for internet-exposed VMware vCenter servers whose admins haven’t yet patched them against the critical arbitrary file ...