Chinese Hackers Exploited VMware ESXi Zero-Days a Year Before Disclosure
Huntress discovered a Chinese-linked exploit toolkit (MAESTRO) targeting VMware ESXi that was built in February 2024—a year before VMware disclosed CVE-2025-22224. Over 30,000 instances remain exposed.