New Ransomware Variant “Eldorado” Unleashed, Focused on VMware ESXi Systems

New Ransomware Variant “Eldorado” Unleashed, Focused on VMware ESXi Systems

A new ransomware-as-a-service called Eldorado has been targeting Windows and VMware ESXi environments in the US since March, primarily in the education, real estate, and healthcare sectors. Eldorado, which first appeared on the RAMP forum, offers an affiliate program for partners to customize their attacks, taking advantage of Go programs for cross-platform functionality and encryption … Read more

Eldorado, a new ransomware group, is focusing its attacks on US organizations.

Eldorado, a new ransomware group, is focusing its attacks on US organizations.

Eldorado, a new ransomware-as-a-service (RaaS) group, has been linked to 16 ransomware attacks, with 13 occurring in the United States. The group targets VMware ESX servers and focuses on industries such as real estate, education, professional services, healthcare, and manufacturing. Eldorado first appeared on the “RAMP” forum in March 2024 and distributes versions of the … Read more

VMware ESXi and Windows Infected by Eldorado Ransomware, Reports Spiceworks

VMware ESXi and Windows Infected by Eldorado Ransomware, Reports Spiceworks

A cybersecurity research team has identified a new ransomware called Eldorado that is targeting organizations globally. This ransomware is operated as Ransomware-as-a-Service (RaaS), allowing for decentralized deployment and a wider range of malware variants. The Eldorado ransomware encrypts files using the ChaCha20 algorithm and employs the RSA-OAEP scheme for key encryption. RaaS enables customers to … Read more

New Eldorado ransomware now targeting Windows and VMware ESXi VMs

New Eldorado ransomware now targeting Windows and VMware ESXi VMs

In March, a new ransomware called Eldorado, operating as a service (RaaS), has targeted victims in the United States across various sectors such as real estate, education, healthcare, and manufacturing. The cybercriminals behind Eldorado have been actively promoting their service on RAMP forums and seeking partners to join their program. Eldorado is a unique ransomware … Read more

New Eldorado ransomware now seeking out Windows and VMware ESXi virtual machines

New Eldorado ransomware now targeting Windows and VMware ESXi VMs

In March, a new ransomware called Eldorado emerged, targeting victims in the US across various industries. The cybercriminals behind Eldorado are actively promoting their malicious service on forums and seeking partners to join their program. The ransomware can encrypt both Windows and Linux systems using different variants and unique encryption algorithms. It also deletes shadow … Read more