VMware loses ESX hypervisor code to hackers

Powered by SC Magazine
 

Not that serious, it says.

VMware has confirmed the leak of source code from its ESX hypervisor, warning possibly more files could be revealed in the future. 

Details of the leak were first reported by CRN, noting that a hacker affiliated with LulzSec posted the source code on Pastebin. 

VMware said that the code dates back to 2003 and 2004, before its newer ESXi hypervisor was released, Ars Technica reported

While it’s probably not good news for companies that use ESX, VMware said the leak “does not necessarily mean that there is any increased risk to VMware customers.”

VMware proactively shares its source code and interfaces with other industry participants to enable the broad virtualisation ecosystem today,” it said.

Its Security Response Center has been engaged to thoroughly investigate the leak and will provide updates to the VMware community “if and when” additional information is available. 

One large VMware ESX Australian customer is retail giant Coles, which ran the hypervisor at its headquarters despite a wider virtualisation project based on Microsoft’s Hyper-V virtaualisation platform. Health insurance company HBF is also a known user.

Kaspersky blog Threat Post claims the leaked documents are tied to attacks on CEIEC, the China Electronics Import & Export Corporation in March.

The breach does not appear to be as serious as that recently faced by Symantec, which lost source code to its pcAnywhere remote acccess software and to components of old versions of Norton.

Copyright © iTnews.com.au . All rights reserved.


VMware loses ESX hypervisor code to hackers
 
 
 
Top Stories
Qld Transport to replace core registration system
State's biggest citizen info repository set for overhaul.
 
Innovating in the sleepy super industry
There’s little incentive to be on the bleeding edge, so why is Andrew Todd fighting so hard?
 
Defence spends $50m to upgrade RAAF's air traffic systems
First step in long-running modernisation.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  7%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  21%
 
An Australian law enforcement agency (AFP, ASIO et al)
  15%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 902

Vote