The New SEXi Ransomware Targets VMware ESXi Servers: What You Need to Know?

Several companies running their workloads on VMware ESXi servers were attacked by the hacking group SEXi. They developed ransomware called SEXi to encrypt VMware ESXi servers, virtual machines, and backups.

SEXi = ESXi — quite an interesting name, isn’t it? It points directly to ESXi.

Unfortunately, they were successful in doing so.

In this article, I will walk you through the SEXi ransomware, and how it works, share some stories, and explain how to protect your VMware workloads to stay safe.

What is SEXi ransomware?
The SEXi ransomware has been developed by the ransomware group SEXi. Once the ransomware gets into the network due to poor security measures, it targets VMware ESXi and encrypts the following files, and it appends the SEXi extension.

Read this article to know more…