Security News > 2024 > August > BlackByte Ransomware Exploits VMware ESXi Flaw in Latest Attack Wave
2024-08-28 10:21
The threat actors behind the BlackByte ransomware group have been observed likely exploiting a recently patched security flaw impacting VMware ESXi hypervisors, while also leveraging various vulnerable drivers to disarm security protections. "The BlackByte ransomware group continues to leverage tactics, techniques, and procedures (TTPs) that have formed the foundation of its tradecraft since its
News URL
https://thehackernews.com/2024/08/blackbyte-ransomware-exploits-vmware.html
Related news
- Microsoft: Ransomware gangs exploit VMware ESXi auth bypass in attacks (source)
- SEXi ransomware rebrands to APT INC, continues VMware ESXi attacks (source)
- CISA warns of VMware ESXi bug exploited in ransomware attacks (source)
- New Linux Variant of Play Ransomware Targeting VMWare ESXi Systems (source)
- New Play ransomware Linux version targets VMware ESXi VMs (source)
- VMware ESXi Flaw Exploited by Ransomware Groups for Admin Access (source)
- VMware ESXi auth bypass zero-day exploited by ransomware operators (CVE-2024-37085) (source)
- Microsoft Says Ransomware Groups Are Exploiting the Newly-Patched VMware ESXi Flaw (source)
- Dallas County: Data of 200,000 exposed in 2023 ransomware attack (source)
- Rite Aid confirms data breach after June ransomware attack (source)