New Variant of Royal Trojan Discovered, Targets VMware ESXi Virtual Machines

By Gagandeep Singh

07-Feb-2023

A security researcher from Equinix Threat Analysis Centre found a new variant of Royal ransomware.

Royal ransomware was first discovered in January 2022 & the new variant is executed using a command line.

The trojan added support for Linux devices to target targeting VMware ESXi virtual systems.

Threat actors use ransomware supports flags for the encryption process.

Since September, Royal ransomware operators have increased their malicious activities.

The groups implemented ransomware based on Linux that targets ESXi.

The group demands a ransom after encrypting their target’s enterprise network systems.

Many VMware ESXi servers all over the internet got their last bit & will only get technical support.

Read the full story here.