Microsoft: Ransomware gangs exploiting VMware ESXi flaw

Microsoft has warned that ransomware gangs, including Black Basta, are exploiting a medium severity authentication bypass vulnerability in VMware ESXi. The flaw could allow attackers to gain full administrative permissions on affected machines, potentially impacting critical network servers. The vulnerability, dubbed CVE-2024-37085, was discovered by Microsoft researchers, who traced its exploitation back to several ransomware operators.