"Linux Version of TargetCompany Ransomware Focuses on VMware ESXi"

A new Linux variant of "TargetCompany" ransomware targets VMware ESXi environments with a custom shell script to deliver and execute payloads. The TargetCompany ransomware operation, also known as "Mallox," "FARGO," and "Tohnichi," emerged in June 2021, targeting organizations in Taiwan, South Korea, Thailand, and India with MySQL, Oracle, and SQL Server database attacks. Avast made a free decryption tool available for variants released up to February 2022. The gang resumed targeting vulnerable Microsoft SQL servers in September and threatened victims with data leaks. This article continues to discuss the new Linux variant of the TargetCompany ransomware.

Bleeping Computer reports "Linux Version of TargetCompany Ransomware Focuses on VMware ESXi"

Submitted by grigby1

Submitted by Gregory Rigby on