IDG Answers is a community of experts who are passionate about technology. Ask a question or answer one below.
The problem wasn't that virtualization was inherently risky; it was that this criminal needed to have more oversight at work, and when he left, all the passwords should have been replaced so he couldn't login to any server, physical or virtual. As for the secret vSphere console, there should be some kind of mechanism for network admins to track the installation of the vSphere console anywhere on their domain.
I'm glad they caught the guy. He sounds like a real jerk.