Emerging Ransomware Gangs Target Linux, VMware, and U.S. Organizations
A new ransomware-as-service (RaaS) called MichaelKors is targeting Linux and VMware ESXi systems, making it the latest file-encrypting malware to do so. Cybercriminals are increasingly targeting ESXi, which is a highly attractive target for modern adversaries due to its popularity as a widespread and popular virtualization and management system. The targeting of VMware ESXi hypervisors with ransomware to scale such campaigns is a technique known as hypervisor jackpotting. To mitigate the impact of hypervisor jackpotting, organizations are recommended to avoid direct access to ESXi hosts, enable two-factor authentication, take periodic backups of ESXi datastore volumes, apply security updates, and conduct security posture reviews.
- New 'MichaelKors' Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems The Hacker News
- Hypervisor Jackpotting, Part 3: Lack of Antivirus Support Opens the Door to Adversaries CrowdStrike
- New RA Group ransomware targets U.S. orgs in double-extortion attacks Bleeping Computer
- New Ransomware Gang RA Group Hits U.S. and South Korean Organizations The Hacker News
- The Week in Ransomware - May 12th 2023 - New Gangs Emerge Bleeping Computer
- View Full Coverage on Google News
Reading Insights
0
0
2 min
vs 3 min read
80%
506 → 103 words
Want the full story? Read the original article
Read on The Hacker News