Not sure where to ask this, so Mods feel free to move it as you see appropriate.

What vmware vulnerabilities does black basta use to compromise esxi hosts? I know of a vshpere shop that recently got decimated by this horror; I want to prevent the same!!

I totally get "hardening" the vsphere environment, but I want to know if there are recent issues with vmware that allow this to infiltrate, or if it's simply a "they got the root password" issue?