Jake Williams on Nostr: So you create an AD group "ESX Admins" and by default, VMware is just like "oh, so ...
Published at
2024-07-29 20:24:21Event JSON
{
"id": "9c421734723765bc3154660771522057759ad516353d0b17446383caa34ef669",
"pubkey": "16b65583830895b2abf0a87f5da54f725f80841cc9956671d9746d2afacbce30",
"created_at": 1722284661,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/malwarejake/statuses/112871647569887688",
"activitypub"
]
],
"content": "So you create an AD group \"ESX Admins\" and by default, VMware is just like \"oh, so you're the admin now?!\"\n\nAnd then to make it dumber, VMware classifies this as a *moderate* severity, despite knowing ransomware TAs are actively using it?\n\nI can only conclude Broadcom is not serious about security. I don't know how you conclude anything else. Oh also, there are no patches planned for ESXi 7.0.\n\nhttps://www.microsoft.com/en-us/security/blog/2024/07/29/ransomware-operators-exploit-esxi-hypervisor-vulnerability-for-mass-encryption/",
"sig": "5e82c43c7be30c532f25d217d833c64bbeb48f36f936832701c578aec7e41530d411cb2aa5e63cf0a9cb1a77900800311563c173bc4cc101c2072a92bf5b8ec2"
}