Cybersecurity researchers have found that ransomware attacks targeting ESXi systems are also leveraging the access to repurpose the appliances as a conduit to tunnel traffic to command-and-control (C2) infrastructure and stay under the radar.
“ESXi appliances, which are unmonitored, are increasingly exploited as a persistence mechanism and gateway to access corporate networks widely,” SygniaRead More
Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations [email protected] (The Hacker News)
by
Tags: