An Anonymous-affiliated hacker called STUN has leaked a number of files apparently containing the source code of some WMware ESX products.
“Good evening, Security World. Allow me first to apologize for this interruption. I do, like many of you, appreciate the comforts of every day routine - the security of the familiar, specially ones to be used in every days products. Which VMware has succeed to ignore and continue producing on same level like its buddy Symantec did,” the hacker stated.
He added, “But it's time for Anonymous finally to deliver. Ofc VMware will try to make like this Kernel is old and isn't used in its recent products. But thanks god, there is still such as thing as reverse engineering that will prove its true destiny.”
The hacker claims that the source code is actually the one of the VMware ESX kernel utilized between 1998 and 2004.
VMware representatives are aware of the hacker’s claims. They say that the files leaked now are connected to the April 24, 2012 incident when part of the source code belonging to the WMware ESX product was published online.
At the time, they predicted that other files might be leaked as well.
“It is possible that more related files will be posted in the future. We take customer security seriously and have engaged our VMware Security Response Center to thoroughly investigate,” Iain Mulholland of VMware said.
“Ensuring customer security is our top priority. As a matter of best practices with respect to security, VMware strongly encourages all customers to apply the latest product updates and security patches made available for their specific environment,” he added.
Although the hacker claims that the source code could be misused considering that probably many of the old kernel’s functions are still utilized in current variants, the company states that customers who apply product updates and relevant security patches should be protected.