vmware

Ransomware targeting VMware ESXi servers surged in 2024, with average demands hitting $5 million, exploiting around 8,000 internet-exposed hosts. Attackers use Babuk variants, circumventing security through accessible entry points. They target critical file types, employing hybrid encryption to complicate recovery. Key strategies for risk mitigation include updating vCenter, implementing MFA, deploying detection tools, and network segmentation. Regular security assessments are vital to safeguard against ransomware threats that can jeopardize organizations reliant on ESXi servers.

https://thehackernews.com/2025/01/ransomware-on-esxi-mechanization-of.html