Hackers actively exploiting VMware bug in massive ransomware campaign

France's computer emergency response team (CERT-FR) has warned that hackers have been targeting 'VMware ESXi' servers since February 3

Ransomware attack, Cyber security
Italy's national cybersecurity agency ACN also warned of a large-scale ransomware campaign targeting thousands of servers across Europe and North America.
IANS New Delhi
2 min read Last Updated : Feb 07 2023 | 12:10 PM IST

Cyber-criminals are exploiting two-year-old vulnerability in Cloud software company VMware for a massive-scale ransomware attack.

France's computer emergency response team (CERT-FR) has warned that hackers have been targeting 'VMware ESXi' servers since February 3.

Italy's national cybersecurity agency ACN also warned of a large-scale ransomware campaign targeting thousands of servers across Europe and North America.

"In the current state of investigations, these attack campaigns seem to have taken advantage of the exposure of ESXi hypervisors which would not have been updated with security patches quickly enough," said CERT-FR.

These vulnerabilities allow an attacker to remotely exploit arbitrary code.

According to a Census search, more than 3,200 VMware servers worldwide have been compromised by the ESXiArgs ransomware campaign.

France is the most affected country, followed by the US, Germany, Canada and the UK.

A VMware spokesperson told TechCrunch that patches for the vulnerability "were made available to customers two years ago in VMware's security advisory of February 23, 2021."

"Security hygiene is a key component of preventing ransomware attacks, and organisations who are running versions of ESXi impacted by CVE-2021-21974, and have not yet applied the patch, should take action as directed in the advisory," the spokesperson said.

The ransomware campaign is already causing "significant" damage due to the number of unpatched machines.

It's not yet clear who is behind the ransomware campaign.

(Only the headline and picture of this report may have been reworked by the Business Standard staff; the rest of the content is auto-generated from a syndicated feed.)

Subscribe to Business Standard digital and get complimentary access to The New York Times

Quarterly Starter

₹900

3 Months

₹300/Month

SAVE 25%

Smart Essential

₹2,700

1 Year

₹225/Month

Save 46%

Super Saver

₹3,900

2 Years

₹162/Month

Subscribe

Renews automatically, cancel anytime

Here’s what’s included in our digital subscription plans

Access to Exclusive Premium Stories Online

  • Over 30 behind the paywall stories daily, handpicked by our editors for subscribers

Complimentary Access to The New York Times

  • News, Games, Cooking, Audio, Wirecutter & The Athletic

Business Standard Epaper

  • Digital replica of our daily newspaper — with options to read, save, and share

Curated Newsletters

  • Insights on markets, finance, politics, tech, and more delivered to your inbox

Market Analysis & Investment Insights

  • In-depth market analysis & insights with access to The Smart Investor

Archives

  • Repository of articles and publications dating back to 1997

Ad-free Reading

  • Uninterrupted reading experience with no advertisements

Seamless Access Across All Devices

  • Access Business Standard across devices — mobile, tablet, or PC, via web or app

More From This Section

Topics :Hackerscyber crimeransomware

First Published: Feb 07 2023 | 12:10 PM IST

Next Story