ZDNet

New Python ransomware targets virtual machines, ESXi hypervisors to encrypt disks

A new strain of Python-based malware has been used in a "sniper" campaign to achieve encryption on a corporate system in less than three hours. The attack, one of the fastest recorded by Sophos ...
Bleeping Computer

Ransomware gang encrypts VMware ESXi servers with Python script

Operators of an unknown ransomware gang are using a Python script to encrypt virtual machines hosted on VMware ESXi servers. While the Python programming language is not commonly used in ransomware ...
Infosecurity Magazine

Phishing Campaign Evolves into PureRAT Deployment, Linked to Vietnamese Threat Actors

The attackers used process hollowing against RegAsm.exe, patched Windows defenses such as AMSI and ETW and unpacked further ...