VMware fixes critical sandbox escape flaws in ESXi, Workstation, and Fusion

March 6, 2024 at 10:49AM VMware released security updates addressing critical sandbox escape vulnerabilities in ESXi, Workstation, Fusion, and Cloud Foundation. The flaws, tracked as CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, and CVE-2024-22255, carry a severity rating and require local administrative privileges for exploitation. VMware recommends removing USB controllers from virtual machines as a mitigation strategy. Older ESXi … Read more

Protected Virtual Machines Exposed to New ‘CacheWarp’ AMD CPU Attack

November 14, 2023 at 01:45PM Researchers have discovered a new attack method called CacheWarp that affects AMD processors. It poses a risk to protected virtual machines by allowing hackers to hijack control flow, break into encrypted VMs, and escalate privileges. CacheWarp is a software-based fault injection attack resulting from an architectural bug in AMD CPUs. … Read more

BlackCat ransomware uses new ‘Munchkin’ Linux VM in stealthy attacks

October 19, 2023 at 05:46PM BlackCat/ALPHV ransomware is using a new tool called ‘Munchkin’ to deploy encryptors on network devices stealthily. The tool runs on virtual machines and allows threat actors to dump passwords, spread on the network, build encryptor payloads, and execute programs on computers. Munchkin makes the ransomware operation more attractive to cybercriminals. … Read more

October Windows Server updates cause Hyper-V VM boot issues

October 17, 2023 at 08:37AM Hyper-V hosts running Windows Server 2019 and Windows Server 2022 are experiencing issues with virtual machines (VMs) failing to boot after installing certain Patch Tuesday updates. Uninstalling the problematic updates resolves the issue, and Microsoft has yet to acknowledge it. In the past, the company released emergency updates to fix … Read more