Cyble analyzes the Rust-based Embargo ransomware, investigating its operations and possible variants.
cyble.com/blog/the-rust-…
#Ransomware #Rust #Embargo #Linux #ESXi #ThreatIntel
🚨OJO con estos dos #ransomware que MUY activos en Argentina🇦🇷:
- Akira: ingresa por VPN y usuarios filtrados y cifra VMware ESXi
- Rhysida: ingresa por phishing y cifra archivos
'cecesxi', RA Group / RA World gang's x64 Linux Go ransomware sample: a8315e4d502f7693c95be64ed27b44eae722aa7b1987b32e49cb48763e91d5e8
Based on filename, this sample probably has been used in the 'C&C Casa e Construção Ltda' (CEC) case, encrypting their ESXi stuffs...
Germán Fernández