Skip to main content
Login
institutional access

You are connecting from
Lake Geneva Public Library,
please login or register to take advantage of your institution's Ground News Plan.

Published loading...Updated

DarkBit Hackers Target VMware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files

Summary by GBHackers On Security
A sophisticated ransomware attack by a previously unknown cybercriminal group called “DarkBit” has targeted a major organization’s VMware ESXi infrastructure, encrypting critical virtual machine files and raising concerns about potential state-sponsored cyber warfare. The incident, which occurred following geopolitical tensions in late January 2023, demonstrates how ransomware groups are increasingly targeting enterprise virtualization platforms…
DisclaimerThis story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.

2 Articles

National Cyber SecurityNational Cyber Security

DarkBit Hackers Attacking Vmware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files | #ransomware | #cybercrime - National Cyber Security Consulting

A newly discovered ransomware campaign has targeted enterprise VMware ESXi environments with military precision, deploying custom-built encryption tools that specifically hunt for virtual machine disk files across VMFS datastores.  Security researchers have successfully reverse-engineered the attack methodology and developed breakthrough decryption techniques, revealing critical vulnerabilities in the threat actors’ cryptographic implementation …

Read Full Article
GBHackers On SecurityGBHackers On Security

DarkBit Hackers Target VMware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files

A sophisticated ransomware attack by a previously unknown cybercriminal group called “DarkBit” has targeted a major organization’s VMware ESXi infrastructure, encrypting critical virtual machine files and raising concerns about potential state-sponsored cyber warfare. The incident, which occurred following geopolitical tensions in late January 2023, demonstrates how ransomware groups are increasingly targeting enterprise virtualization platforms…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • There is no tracked Bias information for the sources covering this story.

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

GBHackers On Security broke the news in on Tuesday, August 12, 2025.
Sources are mostly out of (0)
Stories disproportionately reported by the Left or the Right

Similar News Topics

Hacking icon

Hacking

Security icon

Security

VMware icon

VMware

Infrastructure icon

Infrastructure

News
For You
SearchBlindspotLocal