Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Questions about VMware ESXi servers exploit - [Thread Split]
Message
<blockquote data-quote="ForgottenSeer 98186" data-source="post: 1024153"><p>You got it right. The malicious code is run in ESXi memory space. Then it encrypts the VMware (virtual machine) file types. Since the threat actor has access they can potentially "download" and run additional malicious code to do things such as attain persistence or pivot in the network.</p><p></p><p>At least you are thinking about it and trying to figure it out. That's important. <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite130" alt="(y)" title="Thumbs up (y)" loading="lazy" data-shortname="(y)" /></p></blockquote><p></p>
[QUOTE="ForgottenSeer 98186, post: 1024153"] You got it right. The malicious code is run in ESXi memory space. Then it encrypts the VMware (virtual machine) file types. Since the threat actor has access they can potentially "download" and run additional malicious code to do things such as attain persistence or pivot in the network. At least you are thinking about it and trying to figure it out. That's important. (y) [/QUOTE]
Insert quotes…
Verification
Post reply
Top