Around the world, VMware ESXi servers are being exploited and infected with ransomware with a new Linux version of Abyss Ransomware. This topic was escalated to us via our intelligence platform, indicating a severe spike in communication.
Here is a link to a BleepingComputer article with more information. Linux version of Abyss Locker ransomware targets VMware ESXi servers (bleepingcomputer.com)
At the time of writing this alert, it is not known what vulnerability in ESXi this variant is leveraging. So, for now, please head an overall PATCH NOW to your VMware infrastructure and associated VMs.
Here is a link to a BleepingComputer article with more information. Linux version of Abyss Locker ransomware targets VMware ESXi servers (bleepingcomputer.com)
At the time of writing this alert, it is not known what vulnerability in ESXi this variant is leveraging. So, for now, please head an overall PATCH NOW to your VMware infrastructure and associated VMs.
Stay tuned here on this blog for more information. You can also follow us on Twitter @secdefllc
———UPDATES——–
8/1/2023 – Additional article for reference Abyss Locker Ransomware Looks to Drown VMware’s ESXi Servers (darkreading.com)