REvil Linux Encryptor Targets ESXi Virtual Machines

Share post:

REvil, a well-known ransomware group, will now conduct its operations with a Linux encryption system that targets and encrypts virtual Vmware ESXi machines, making it easier for the group to encrypt many servers simultaneously with a single command.

Vitali Kremez of Advanced Intel explained in an interview with Bleeping Computer that the new REvil Linux variant is an ELF64 executable that contains the same configuration options used by the more common Window Executable.

For Wosar “The reason why most ransomware groups implemented a Linux-based version of their ransomware is to target ESXi specifically”

For more information, read the original story in Bleeping Computer.

SUBSCRIBE NOW

Related articles

AT&T Fined $13 Million for Supply Chain Data Breach

AT&T has agreed to pay a $13 million fine following a significant data breach that exposed information of...

Supply Chain Attack Weaponizes Communication Devices in Lebanon

A sophisticated supply chain attack has turned everyday communication devices into weapons in Lebanon, marking a new era...

Chinese Botnet “Raptor Train” Infects 260,000 Devices Worldwide

A massive Chinese botnet dubbed "Raptor Train" has been disrupted by the FBI and cybersecurity researchers. This sophisticated...

Multi-year spear-phishing campaign finally caught

U.S. federal prosecutors have indicted Wu Song, a Chinese national employed by state-owned Aviation Industry Corporation of China,...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways