Security Advisory: ESXiARGS Ransomware for Older VMware Patches

ESXiARGS featured
ESXiARGS ransomware banner

To all VMware ESXi server users, we would like to spread awareness that businesses currently using older patches of ESXi are at risk of being hit by new ransomware attack, ESXiARGS. The ransomware attack specifically targets vulnerabilities within the older ESXi patches to easily infiltrate your system. If your business is currently using the following versions, we strongly urge you to update:

  • ESXi versions 7.x prior to ESXi70U1c-17325551
  • ESXi versions 6.7.x prior to ESXi670-202102401-SG
  • ESXi versions 6.5.x prior to ESXi650-202102101-SG

What is ESXiARGS Ransomware?

ESXiARGS ransomware definition

ESXiARGS is a type of ransomware that targets virtual machines running on VMware vSphere infrastructure. The ransomware is designed to encrypt all of the virtual machines on a target’s network, rendering them inaccessible until a ransom is paid. Unfortunately, paying the ransom doesn’t guarantee that the attacker will give you the decryption key.

How ESXiARGS Ransomware Works

ransomware how it works

ESXiARGS ransomware works by exploiting vulnerabilities in the VMware vSphere infrastructure. Once the attackers gain access to the virtual machines, they install the ransomware, which encrypts all of the data on the virtual machines. The attackers then demand payment in exchange for the decryption key, which will allow the victim to regain access to their data.

Protecting Your Business from ESXiARGS Ransomware

ESXiARGS defense

In the event that you are unable to update immediately, there are several steps you can take to protect your business from ESXiARGS in the meantime. First and foremost, it is important to keep your systems up to date with the latest security patches and updates. Additionally, you should implement a strong password policy and ensure that all employees are trained on cybersecurity best practices. Regular backups of your data can also help you to recover quickly in the event of a ransomware attack.

Responding to an ESXiARGS Ransomware Attack

business safety

In the unfortunate event that your business is targeted by an ESXiARGS ransomware attack, it is important to have a plan in place to respond. Your first step should be to isolate the infected systems to prevent the ransomware from spreading further. Then, you should contact law enforcement and a cybersecurity expert to help you to recover your data and regain control of your systems.

ESXiARGS ransomware attacks are a serious threat to businesses of all sizes. The above suggestions can help you lessen the risk of infection of ESXiARGS but will not ensure your business’ safety. Again the best way to ensure your business’ security is to update your VMware ESXi version to the latest patch. We once again implore you to plan your update as soon as possible.

Contact us at marketing@wwwctlink.azurewebsites.net if you would like to consult us on your VMware update and measures to take before the update.

VMware vSAN: The Key Benefits

VMware vSAN: The Key Benefits

Our ever-changing marketplace has been forcing organizations to adapt constantly to ensure that they stay competitive, this is more prevalent in an organizations IT.  This has brought them to the public cloud to try and increase their business agility while at the same time lowering their costs, but due to data governance, risk mitigation and cost, many organizations found they are still in need of their private cloud, meaning they need multiple clouds to ensure business operations are being efficient.

Hybrid cloud, a multi-cloud operational model, is the next phase of IT evolution which organizations are evaluating as their solution to help them solve challenges of integrating multiple clouds.  VMware’s vSAN offers organizations the logical next step to their hybrid cloud journey, below are some of the key benefits (info-graphics) when using vSAN in your organization:

  1. It is natively integrated
  • vSphere integrated HCI simplifies architecture, enhances security and maximizes performance

  1. It has a lower CAPEX cost
  • Experience the benefits of HCI with the lowest dollar per IOPS

  1. It is operationally simpler
  • Roll out infrastructure and applications with ease and limited training

  1. It is SDDC and Cloud Ready
  • Futureproof HCI with the widest deployment options – even public cloud


To learn more about vSAN, you may refer to our product page here or you can contact us directly at 893-9515 and we be happy to help answer any questions you may have on vSAN!

CT Link Becomes a VMware Enterprise Partner!

CT Link Becomes a VMware Enterprise Partner!

On June 29, 2018, CT Link officially signed up to become a VMware enterprise partner.  VMware’s core business focuses on support to modernize data centers, integrating public cloud, empowering digital workspaces and transforming security for its clients.  These focuses have helped VMware become one of the leading figures in the virtualization software market and a main reason why CT Link Systems, Inc. has decided to be an official partner focusing on products such as vSphere and vSAN.

VMware vSphere virtualizes and aggregates the underlying physical hardware resources across multiple systems and provides pools of virtual resources to the datacenter. As a cloud operating system, VMware vSphere manages large collections of infrastructure (such as CPUs, storage, and networking) as a seamless and dynamic operating environment, and also manages the complexity of a datacenter.

VMware vSAN on the other hand, is a hyper-converged, software-defined storage (SDS) product that pools together direct-attached storage devices (storage that is used individually and not accessible to others) across a VMware vSphere cluster to create a distributed, shared data store.

For those who are interested in learning more about VMware we will be releasing a more in-depth article on the vSphere and vSAN soon!  If you wish to learn more about it now, you can contact us at 893-9515 and we will be happy to answer your inquires!