Agenda Ransomware Targets VMware Machines

Anup Ghosh
Mar 31, 2024
1 min read

The Download

New campaigns by Agenda ransomware is targeting VMware vCenter and ESXi servers worldwide using system scripts and remote management and monitoring (RMM) tools to compromise VMware images.

The ransomware, built on the Rust programming language, uses system utilities to spread to VM images and also vulnerable system driver libraries to evade detection from anti-malware systems.

What You Can Do

Agenda ransomware is targeting VMware infrastructure and using system tools to find other VM targets and spread across the VM infrastructure. Securing your RMM tools, monitoring scans across the infrastructure as well as connections between machines can help detect and block the spread of the Agenda malware.

To Learn More

https://www.darkreading.com/cloud-security/agenda-ransomware-vmware-esxi-servers

Agenda Ransomware Targets VMware Machines

The Download

What You Can Do

Recent Posts

Empowering businesses with comprehensive tools to detect, protect, and remediate against cyber threats.

General Email: info@threatmate.com

Main Phone: +1 302-213-3480

Support Email: support@threatmate.com

Support Phone: +1 813-896-4672

Support Hours: 9:00 AM – 5:00 PM EST
Support Portal

The Download

What You Can Do

Empowering businesses with comprehensive tools to detect, protect, and remediate against cyber threats.

General Email: info@threatmate.com

Main Phone: +1 302-213-3480

Support Email: support@threatmate.com

Support Phone: +1 813-896-4672

Support Hours: 9:00 AM – 5:00 PM EST Support Portal

Support Hours: 9:00 AM – 5:00 PM EST
Support Portal