China-linked APT UNC3886 Exploits VMware Zero-Day Since 2021
China-linked APT UNC3886 Exploits VMware Zero-Day Since 2021
20 January 2024
Mandiant researchers observed UNC3886 exploiting a VMware ESXi zero-day vulnerability in June 2023, using novel malware persistence techniques to achieve administrative access within VMware ESXi Hypervisors.