New Luna Ransomware Encrypt Devices Running Windows, Linux And ESXi Systems

Share post:

A new ransomware named Luna was discovered by Kaspersky security researchers via a dark web ransomware forum. Luna can be used to encrypt devices running Windows, Linux and ESXi systems.

The ransomware is very simple and based on command line options adjudged to be under development with limited capabilities. Written in the programming language Rust, the ransomware operators were able to exploit its platform-agnostic nature, to port it to several platforms with only minor changes to the source code.

“The advertisement states that Luna only works with Russian-speaking affiliates. Also, the ransom note hard-coded inside the binary contains spelling mistakes. For example, it says ‘a little team’ instead of ‘a small team.’ Because of this, we assume with medium confidence that the actors behind Luna are speakers of Russian,” Kaspersky said.

According to researchers, the cross-platform language allows Luna ransomware to bypass automated static code analysis attempts.

While the ransomware strain is still being monitored, Kaspersky indicates that there is very little data on victims compromised with the Luna ransomware.

The sources for this piece include an article in BleepingComputer.

Featured Tech Jobs


Related articles

Abuse of valid accounts by threat actors hits a high, says IBM

Attackers are finding that obtaining valid credentials is an easier route to achieving their goals, s

Cyber Security Today, Feb. 21, 2024 – A patch warning from ConnectWise, the latest ransomware news, and more

This episode reports on a report comparing business email compromise attacks against ransomware

UK leads takedown of LockBit ransomware gang’s website

The LockBit ransomware gang’s website has been seized, several news agencies reported late Monday. The Reuters news agency and The Register are carrying stories based on a new splash screen that has appeared on the gang’s website. It says, “This site is now under the control of the National Crime Agency of the UK, working

Cyber Security Today, Feb. 19, 2024 – Fake police data breach notification fools Maine’s AG site

This episode reports a recent fake data breach report and two real ones, a man pleads guilty to being involved in malware distribution

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways