Bleeping Computer

Babuk code used by 9 ransomware gangs to encrypt VMWare ESXi servers

An increasing number of ransomware operations are adopting the leaked Babuk ransomware source code to create Linux encryptors targeting VMware ESXi servers. SentinelLabs security researchers observed ...
Dark Reading

Multiple Ransomware Groups Adapt Babuk Code to Target ESXi VMs

Over the past year, 10 different ransomware families have utilized leaked Babuk source code to develop lockers for VMware ESXi hypervisors. Hypervisors are programs used to run multiple virtual ...
Infosecurity-magazine.com

Threat Actors Use Babuk Code to Build Hypervisor Ransomware

An increasing number of threat actors have been observed using the leaked Babuk code from 2021 to create a new form of ransomware targeting VMware ESXi hypervisor environments. According to an ...
Bleeping Computer

New Buhti ransomware gang uses leaked Windows, Linux encryptors

A new ransomware operation named 'Buhti' uses the leaked code of the LockBit and Babuk ransomware families to target Windows and Linux systems, respectively. While the threat actors behind Buhti, now ...
Dark Reading

RA Ransomware Group Emerges With Custom Spin on Babuk

A newly discovered ransomware gang dubbed RA Group is ramping up its cyberattacks — the latest in a line of threat actors leveraging the leaked Babuk source code. The group distinguishes itself from ...
Infosecurity-magazine.com

New Decryption Key Available for Babuk Tortilla Ransomware Victims

A new decryptor key has been created for victims of the Babuk Tortilla ransomware variant, Cisco Talos has confirmed. These keys will be added to a generic Babuk decryptor previously created by Avast ...