According to a recent report, unpatched and unprotected VMware ESXi servers across the globe have been targeted over the past few days in a massive ransomware attack exploiting a 2021-patched vulnerability.
The cybersecurity community is still investigating the attacks, known as ESXiArgs, but based on the data at hand, it appears that threat actors are taking advantage of CVE-2021-21974, a high-severity ESXi OpenSLP heap-overflow flaw that VMware patched in February 2021.
At the time, VMware stated in its advisory that “a malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue in the OpenSLP service resulting in remote code execution.”
Read More: VMware ESXi Servers Targeted in Ransomware Attack via Old Vulnerability
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.