Jason Xie found that if you have a local organisation administrator credentials, by using the API you can create, remove or revert snapshots of vApps and VMs located in another organisation’s VDC. While you can not then access those snapshots, this could have a significant impact for the target organisation.
BSides San Francisco is a non-profit organization designed to advance the body of Information Security knowledge by providing an annual, two-day, open forum for discussion and debate for security engineers and their affiliates. Presenters at BSides SF conferences are engaging the participants and getting the discussions started on the “Next Big Thing”, not preaching at you from the podium about last month’s news.