Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers

Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers


The Agenda ransomware group has been ramping up infections worldwide, thanks to a new and improved variant of its virtual machine-focused ransomware.

Agenda (aka Qilin and Water Galura) was first spotted in 2022. Its first, Golang-based ransomware was used against an indiscriminate range of targets: in healthcare, manufacturing, and education, from Canada to Colombia and Indonesia.

Toward the end of 2022, Agenda’s proprietors rewrote its malware in Rust, a useful language for malware authors…



Source link