Akira Ransomware Expands Target to Linux and VMware ESXi
Akira Ransomware Expands Target to Linux and VMware ESXi Akira, a Ransomware-as-a-Service (RaaS) group, has quickly established itself as a major cybersecurity threat since emerging in March 2023. The group has executed over 300 attacks in 2024 alone, amassing more than $42 million in ransom payments as of April. Akira primarily targets critical sectors in […]
Ransomware Actors are Axploiting ESXi Bare-Metal Hypervisors via SSH Tunneling
Ransomware Actors are Exploiting ESXi Bare-Metal Hypervisors via SSH Tunneling Summary Threat actors are targeting VMware ESXi hypervisors by abusing SSH tunneling to establish persistence, facilitate lateral movement, and execute ransomware without detection. These hypervisors, vital to virtualized environments, frequently lack proper monitoring, making them attractive targets. The dispersed logging architecture of ESXi further complicates […]