[tomek@vz]

Citiraj:

Cybersecurity researchers at Trend Micro have discovered a new and dangerous variant of LockBit ransomware that targets Windows, Linux, and VMware ESXi systems, utilizing advanced obfuscation techniques and sophisticated cross-platform capabilities.
Advanced Multi-Platform Attack Strategy

LockBit 5.0 represents a significant evolution in ransomware threats, featuring dedicated variants for three critical computing platforms.


The Windows variant employs heavy obfuscation and packing techniques, loading its payload through DLL reflection while implementing sophisticated anti-analysis methods including ETW patching and automatic termination of security services.
The Linux variant maintains similar functionality with command-line options allowing attackers to target specific directories and file types, as
Most concerning is the ESXi variant, which specifically targets VMware virtualization infrastructure, enabling attackers to encrypt entire virtual machine environments with single execution.

> gbhackers