Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations

Updated on January 28, 2025

Cybersecurity researchers have found that ransomware attacks targeting ESXi systems are also leveraging the access to repurpose the appliances as a conduit to tunnel traffic to command-and-control (C2) infrastructure and stay under the radar.
“ESXi appliances, which are unmonitored, are increasingly exploited as a persistence mechanism and gateway to access corporate networks widely,” Sygnia…

Read the rest of the story at Read More

Source: The Hacker News

December 19, 2023 Uncategorized

Hackers Abusing GitHub to Evade Detectio...

March 13, 2025 Uncategorized

Meta Warns of FreeType Vulnerability (CV...

December 4, 2024 Uncategorized

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations

Related posts

Hackers Abusing GitHub to Evade Detectio...

Meta Warns of FreeType Vulnerability (CV...

Critical SailPoint IdentityIQ Vulnerabil...

Leave a Comment Cancel reply

Recent News

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines

MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

Microsoft Sets Passkeys Default for New Accounts; 15 Billion Users Gain Passwordless Support