Cyber-criminals are taking advantage of a 2 year old vulnerability in cloud software company VMware to launch a massive ransomware attack.
France’s Computer Emergency Response Team (CERT-FR) has warned that hackers are targeting ‘VMware ESXi’ servers since 3 February.
Also Read: Vivo X90 Series Launched: Price, Specifications
ACN, Italy’s national cyber security agency, has warned of a massive ransomware campaign targeting thousands of servers in Europe and North America.
CERT-FR said “In the current state of investigations, these attack campaigns seem to have taken advantage of the exposure of ESXi hypervisors which would not have been updated with security patches quickly enough,”
Source: Google
These vulnerabilities would allow an attacker to exploit arbitrary code remotely.
As per the report, more than 3,200 VMware servers worldwide have been compromised by the ESXiArgs ransomware campaign. France is the most affected country, followed by the US, Germany, Canada and the UK.
Also Read: LG लेकर आया है 97 इंच का नया वायरलेस OLED TV
A VMware spokesperson told TechCrunch about the patches for the vulnerability
“were made available to customers two years ago in VMware’s security advisory of 23 February, 2021.”
“Security hygiene is a key component of preventing ransomware attacks, and organisations who are running versions of ESXi impacted by CVE-2021-21974, and have not yet applied the patch, should take action as directed in the advisory,”
Source: Google
The ransomware campaign is already causing “significant” damage due to the number of machines that haven’t been patched.
It’s still not clear who is behind the ransomware campaign.