MichaelKors Ransomware Targets Linux and VMware ESXi Systems with Hypervisor Jackpotting

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

MichaelKors ransomware, a new RaaS operation, has been targeting Linux and VMware ESXi systems since April 2023, utilizing the tactic of “hypervisor jackpotting” to gain unrestricted access and encrypt files, posing a significant threat to organizations’ virtualization infrastructure.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.