Ransomware

Index Engines and Infinidat Celebrate One-Year Strategic Partnership Adding Support for VMware Datastores to InfiniSafe® Cyber Detection

by
Index Engines and Infinidat Celebrate One-Year Strategic Partnership Adding Support for VMware Datastores to InfiniSafe® Cyber Detection

Holmdel, NJ, May 01, 2024 (GLOBE NEWSWIRE) — Cybersecurity innovator Index Engines and enterprise storage leader Infinidat today announced expanded support for InfiniSafe® Cyber Detection, powered by Index Engines CyberSense®, for the InfiniBox™ SSA and InfiniBox®. The two organizations entered a strategic partnership in the spring of 2023 to bring advanced AI-powered cyber detection analytics … Read more

Advanced Ransomware Detection with Next-Gen SIEM | CrowdStrike

by
Advanced Ransomware Detection with Next-Gen SIEM | CrowdStrike

CrowdStrike Falcon® Next-Gen SIEM enables companies to search, investigate and hunt down threats, including detection of advanced ransomware targeting VMware ESXi  Initial access to the ESXi infrastructure1 is typically gained through lateral movement using valid credentials eCrime actors target and deploy ransomware in ESXi environments to increase the impact and scale of their attacks, which … Read more

Hosting firm’s VMware ESXi servers hit by new SEXi ransomware

by
Hosting firm’s VMware ESXi servers hit by new SEXi ransomware

Update 4/5/24: More information added about discovered Windows encryptors. Chilean data center and hosting provider IxMetro Powerhost has suffered a cyberattack at the hands of a new ransomware gang known as SEXi, which encrypted the company’s VMware ESXi servers and backups. PowerHost is a data center, hosting, and interconnectivity company with locations in the USA, … Read more

The Week in Ransomware – April 5th 2024 – Virtual Machines under Attack

by
The Week in Ransomware – April 5th 2024 – Virtual Machines under Attack

Ransomware attacks targeting VMware ESXi and other virtual machine platforms are wreaking havoc among the enterprise, causing widespread disruption and loss of services. Panera’s massive IT outage last month that took down internal systems, the website, mobile apps, and phones was caused by a ransomware attack encrypting the company’s virtual machines. While the company has … Read more

Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers

by
Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers

The Agenda ransomware group has been ramping up infections worldwide, thanks to a new and improved variant of its virtual machine-focused ransomware. Agenda (aka Qilin and Water Galura) was first spotted in 2022. Its first, Golang-based ransomware was used against an indiscriminate range of targets: in healthcare, manufacturing, and education, from Canada to Colombia and … Read more

‘MrAgent’ ransomware tool from RansomHouse Group targets ESXi servers

by
‘MrAgent’ ransomware tool from RansomHouse Group targets ESXi servers

A new ransomware tool called “MrAgent” operates as a binary designed to run primarily on VMware ESXi hypervisors with the sole purpose of automating and tracking the deployment of ransomware across large environments with multiple hypervisors. In a Feb. 14 blog post, Trellix researchers identified the gang responsible, the RansomHouse Group, as a ransomware-as-a-service operation … Read more

Linux version of Qilin ransomware focuses on VMware ESXi

by
Linux version of Qilin ransomware focuses on VMware ESXi

A sample of the Qilin ransomware gang’s VMware ESXi encryptor has been found and it could be one of the most advanced and customizable Linux encryptors seen to date. The enterprise is increasingly moving to virtual machines to host their servers, as they allow for better usage of available CPU, memory, and storage resources. Due … Read more

VMware users anxious about costs and ransomware threats – Help Net Security

by
VMware users anxious about costs and ransomware threats – Help Net Security

VMware customers have growing concerns about the state of the virtualization software and the company behind it – ranging from rising licensing costs, ransomware vulnerabilities and a diminishing quality of support, according to VergeIO. 84% of respondents indicated that they were concerned about VMware’s current and future costs, with many highlighting “per-core” renewal quotes and … Read more