Use one Virtual Machine to own them all — active exploitation of ESXicape

Executive summary: A critical hypervisor escape vulnerability in VMware ESXi/vCenter allows attackers who compromise a VM to break out of the VM, access cluster storage and other VMs, and manipulate domain resources; Microsoft observed the exploit in the wild and unpatched ESXi deployments (including managed providers and private clouds) are at significant risk, often leveraged in ransomware incidents.