How hackers created rogue VMs in VMware | John Schlager posted on the topic | LinkedIn (2025)

Hackers Created Rogue VMs to Evade Detection in Recent MITRE Cyber Attack. The MITRE Corporation has revealed that the cyber attack targeting the not-for-profit company towards late December 2023 by exploiting zero-day flaws in Ivanti Connect Secure (ICS) involved the actor creating rogue virtual machines (VMs) within its VMware environment."The adversary created their own rogue VMs within the VMware environment, leveraging compromised vCenter Server access," MITRE http://ow.ly/6ARE105ujkp #InceptusSecure #UnderOurProtection

3

Chinese Hackers Silently Weaponized VMware Zero-Day Flaw for 2 Years: An advanced China-nexus cyber espionage group previously linked to the exploitation of security flaws in VMware and Fortinet appliances has been linked to the abuse of a critical vulnerability in VMware vCenter Server as a zero-day since late 2021."UNC3886 has a track record of utilizing zero-day vulnerabilities to complete their mission without being detected, and this latest example further https://lnkd.in/gWFUfMGk

Chinese Hackers Silently Weaponized VMware Zero-Day Flaw for 2 YearsAn advanced China-nexus cyber espionage group previously linked to the exploitation of security flaws in VMware and Fortinet appliances has been linked to the abuse of a critical vulnerability in VMware vCenter Server as a zero-day since late 2021.Read More: bit.ly/3ObCAGJ#ASC #arabsecurityconsultants #cybersecuritynews

In the face of agile cyber threats, modern security calls for a new approach. Discover Palo Alto Networks PAN-OS® 11.1 Cosmos. The industry's first Zero Trust management and operations solution, powered by AI and industry-leading NGFW hardware platforms. https://bit.ly/3GBoBWE #PANWCosmos

4

1 Comment

In the face of agile cyber threats, modern security calls for a new approach. Discover Palo Alto Networks PAN-OS® 11.1 Cosmos. The industry's first Zero Trust management and operations solution, powered by AI and industry-leading NGFW hardware platforms. https://bit.ly/3GBoBWE #PANWCosmos

22

In the face of agile cyber threats, modern security calls for a new approach. Discover Palo Alto Networks PAN-OS® 11.1 Cosmos. The industry's first Zero Trust management and operations solution, powered by AI and industry-leading NGFW hardware platforms. https://bit.ly/3GBoBWE #PANWCosmos

Chinese cyber-espionage groups are stepping up their game with sophisticated "infrastructure-as-a-service" networks known as operational rely box (ORB) networks. According to Mandiant, these networks use virtual private servers and compromised devices to hide malicious activities, making traditional IP-based defenses ineffective. With the growing complexity of attacks, cybersecurity defenders need to rethink their strategies to stay ahead, instead of relying on static indicators of compromise.Read the full article here:https://bit.ly/3Kq5l0j#BreachWatch #Mandiant #CyberEspionage #ThreatGroup #SecurityInfrastructure

5

In the face of agile cyber threats, modern security calls for a new approach. Discover Palo Alto Networks PAN-OS® 11.1 Cosmos. The industry's first Zero Trust management and operations solution, powered by AI and industry-leading NGFW hardware platforms. https://bit.ly/3GBoBWE #PANWCosmos

4

In the face of agile cyber threats, modern security calls for a new approach. Discover Palo Alto Networks PAN-OS® 11.1 Cosmos. The industry's first Zero Trust management and operations solution, powered by AI and industry-leading NGFW hardware platforms. https://bit.ly/3GBoBWE #PANWCosmos

7

In the face of agile cyber threats, modern security calls for a new approach. Discover Palo Alto Networks PAN-OS® 11.1 Cosmos. The industry's first Zero Trust management and operations solution, powered by AI and industry-leading NGFW hardware platforms. https://bit.ly/3GBoBWE #PANWCosmos

11