ESXiArgs updates its ransomware, targeting recovery of VMs.

Last week, we posted about how a VMware vulnerability was being abused by hackers to launch ransomware attacks. The group named ESXiArgs, are responsible for the ongoing attacks.

CISA released a recovery script to combat the ongoing attacks, the fix was posted on GitHub allowing users to download it.

ESXiArgs however have proceeded to update their ransomware, leading to the recovery process of VMware ESXI virtual machines to become near enough impossible.

More can be read about the updated attacks here https://www.bleepingcomputer.com/news/security/new-esxiargs-ransomware-version-prevents-vmware-esxi-recovery/

The ways in which hackers are operating is constantly changing, if they want to find a new way into a system, they will. They relentlessly will find new ways to get access to what they want, meaning you should do what you can to protect yourself.

A third-party backup with Backup Systems is stored locally, remotely in the cloud or off site at a data centre, preventing it from being affected in the event of a ransomware attack.

Visit our managed services to find out more!


Photo by Daniel Lawrence, Bleeping Computer and Brett Sayles