That's... weird, actually. I'm inclined to think that this is incompetence rather than malice, if only because as malice its extraordinary incompetent. I mean, what would the point even be? I would think it's a MITM, but they already control the hypervisor, so I can't imagine any sort of compromise that isn't completely trivial to implement invisibly.