Loading...
Loading...
Browse all stories on DeepNewz
VisitWhat will be the primary method used to exploit the VMware ESXi vulnerability by December 31, 2024?
Ransomware • 25%
Data theft • 25%
Denial of Service • 25%
Other • 25%
Reports from major cybersecurity firms or news outlets
Broadcom's VMware ESXi Vulnerability Allows Hackers Admin Control Despite 'Moderate' Severity Rating
Jul 29, 2024, 09:26 PM
A recently discovered vulnerability in VMware's ESXi hypervisor allows hackers to gain hypervisor admin control by simply creating an Active Directory (AD) group named 'ESX Admins'. This issue, which VMware has classified as 'moderate' severity, is being actively exploited by ransomware threat actors. The vulnerability is particularly concerning because the right to create such a group is often delegated to many IT personnel or even all users within a company through platforms like Microsoft Identity Manager (MIM). Despite the serious implications, VMware's classification of the vulnerability has raised concerns among cybersecurity experts. Broadcom, the parent company of VMware, has yet to address these concerns.
View original story
Bypassing user consent • 25%
Terminal redirection • 25%
Gatekeeper bypass • 25%
Other method • 25%
Phishing attacks • 25%
Direct server exploitation • 25%
Malware distribution • 25%
Other • 25%
Phishing • 25%
Direct network attack • 25%
Malware installation • 25%
Other • 25%
Kernel Rootkit • 25%
SSDT Hook • 25%
Infinityhook • 25%
Other • 25%
Phishing emails • 25%
Malware • 25%
Social engineering • 25%
Other • 25%
Disabling CUPS • 25%
Applying a security patch • 25%
Network segmentation • 25%
Other • 25%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Insider Threat • 25%
External Hacker • 25%
Third-Party Vendor • 25%
Other • 25%
Smishing • 25%
SIM swapping • 25%
Phishing • 25%
Other • 25%
No • 50%
Yes • 50%
Yes • 50%
No • 50%
No • 50%
Yes • 50%
Release a patch • 25%
No action taken • 25%
Upgrade severity rating • 25%
Issue a workaround • 25%