Skip to content

Ransomware on the virtual machine complicates recovery

Posted by: GuidePoint Security

< 1 min read

November 9, 2022 – Published on IT Brew

After years of encrypting hard drives, ransomware threat actors have hit on a different target: virtual machines. A successful compromise of a “host” platform holding “guest” VMs allows efficient hackers to get riches for their ransomware.

Virtually possible. A number of ransomware gangs have zeroed in on virtual machines—VMware recently noted a number of ESXi targeters.

A set of virtualized servers in one place is a jackpot to cybercriminals, said Drew Schmitt, principal threat intelligence analyst at the cybersecurity services firm GuidePoint Security. “Now, you’re encrypting the entire server by just encrypting one file,” Schmitt told IT Brew.

Read More HERE.

Categories: Cybersecurity Incident Response & Threat Intelligence News
Tags:GRIT

GuidePoint Security

Reckoning with Ransomware
How to prepare your organization for a ransomware incident The process of dealing with an active ransomware incident is a […]
Download

Related Articles

View All

  • Incident Response & Threat Intelligence
Reckoning with Ransomware
Read More 2 min read
  • Incident Response & Threat Intelligence
GRIT Ransomware Report-2022-Q3
Read More < 1 min read
  • Incident Response & Threat Intelligence
US Treasury says financial ransomware losses topped $1.2 billion last year
Read More < 1 min read