CyberCube Finds Potential Targets in VMware Ransomware Campaign

CyberCube | February 17, 2023 | Read time : 01:26 min


On February 16, 2023, CyberCube, a leading provider of cyber risk analytics, has identified vulnerable companies at risk of attack in a new ransomware campaign affecting thousands of businesses worldwide.

A ransomware campaign called ESXiArgs, which is automated, targets outdated VMware ESXi servers globally. The cybersecurity community reported that threat actors had improved their attacks starting on February 9, 2023. The campaign encrypts configuration files on at-risk ESXi servers, potentially making clients' virtual machines (VMs) unusable. Internet-wide scans conducted within days after the first reports indicated a fast infection rate, with over 2,000 servers infected.

The "CyberCube Briefing: Ransomware Risks & VMware Servers" report revealed that around 70,000 ESXi hypervisors worldwide could be at risk. CyberCube, through analysis of companies in its Industry Exposure Database (IED has identified organizations that utilize VMware ESXi hypervisors that may be at risk of the ESXiArgs ransomware.

CyberCube has modeled a ransomware attack on a large scale as part of Portfolio Manager. This scenario-based data-driven model allows risk professionals to generate insights for their teams and senior leadership. This tool also enables stress testing of insurance risk portfolios, helping identify areas of accumulation risk and loss drivers.

CyberCube's Cyber Threat Intelligence Principal, William Altman, commented, "Large US-based insureds operating in banking, education, manufacturing, non-profit, aviation, and agriculture are at higher risk of being attacked by threat actors leveraging vulnerabilities in ESXi hypervisors compared to insureds operating in other industries."

He added, "Large insureds ($1 billion-plus revenue) are at greater risk than medium, small, or micro-sized insureds. Large-sized companies are more likely to require the use of hypervisors and virtual machines as the foundation for the large-scale deployment of cloud computing and cloud storage resources."

(Source – Business Wire)

About CyberCube

CyberCube, founded in 2015, is a leading cyber risk analytics provider focused on the insurance industry. Its cloud-based platform enables insurance organizations to quantify cyber risk for placing insurance, underwriting cyber risk, and managing cyber risk aggregation using best-in-class data access and advanced multi-disciplinary analytics. The company's enterprise intelligence layer includes modeling on thousands of points of technology failure and provides insights on millions of companies globally.


10 most essential performance metrics that businesses should consider when managing their virtual machines.


10 most essential performance metrics that businesses should consider when managing their virtual machines.

Related News


Corent Announces Support for Azure Linux Container Host for Azure Kubernetes Service (AKS)

Businesswire | May 26, 2023

Corent Technology today announced the company has added full support for Azure Linux container host for AKS in the company’s Corent MaaS™ platform. Corent previously supported automated containerization of workloads on Microsoft Azure and is now offering customers full supports for those same workloads on Azure Kubernetes Service (AKS) when using Azure Linux container host for AKS. The Azure Linux container host for AKS uses a native AKS image that is optimized for security and performance by minimizing the packages. Every package is built from the source and validated, ensuring your services run on proven components. Azure Linux container host is lightweight, comprising only the necessary packages needed to run container workloads. It provides a reduced attack surface and eliminates patching and maintenance of unnecessary packages. At Azure Linux’s base layer lies a Microsoft-hardened kernel tuned for Azure. SIs and customers can use Corent MaaS™ to scan and discover workloads suitable for containerization. MaaS also automates the containerization of workloads to save time, reduce costs, and real-time risk mitigation. This way, SIs and customers enjoy the best of a comprehensive, well-rounded tool without the associated risks and pitfalls. “We pride ourselves in providing tools for automating the entire Cloud journey,” said Sean Jazayeri, SVP of Strategic Alliances, Corent. “Through this collaboration with Microsoft, we are pleased to add another feature to our solution that supports the use of Microsoft products and Azure services.” “With Azure Linux container host, customers see benefit from the value of having a secure, performant, and fully native AKS container host,” said Jim Perrin, Principal Program Manager, Microsoft Azure Linux. “Microsoft controls the supply chain for Azure Linux end to end, resulting in a more streamlined image tailored and optimized for AKS. Azure Linux container host provides a consistent k8s experience throughout the developer and production lifecycle coupled with the level of support you expect from Microsoft.” About Corent Technology Corent Technology, Inc. is a leading innovator in the cloud migration and SaaS-enablement technology space. Corent’s SurPaaS® Platform is used by key enterprises, system Integrators and cloud providers to enable rapid discovery, analysis, planning, optimisation, and migration to the cloud; and optionally, automated transformation of software applications to efficient, scalable SaaS. Corent is managed by a team of industry veterans from Microsoft, IBM, HP, EMC, Oracle, and VMware among others.

Read More


Virtual RAN Hits the Mainstream…Now Waiting for the Green Light

prnewswire | April 05, 2023

Mobile Experts Inc. released a detailed market study today, highlighting the growth of Virtual RAN. In particular, this report estimates the pricing and adoption of vDU and vCU software from 2022 through 2032, showing how vRAN will grow through 5G deployments and accelerate with 5.5G or 6G deployments. Mobile Experts has collected data from dozens of software and hardware suppliers, as well as 20 different mobile operators, in order to pinpoint the specific opportunities served by virtualization in upcoming mobile networks. Major distinctions between public and private networks are illustrated, along with the impact of COTS semiconductors in the radio and the impact of virtualization in 2G through 4G networks. This new report complements the recent Mobile Experts report on Open RAN, which highlights the performance, cost, and flexibility implications of Open RAN standards in the market. Together, these two reports provide a complete picture of the changing architecture in mobile networks. Joe Madden, lead analyst at Mobile Experts, commented that "We consistently predicted in 2013 through 2020 that vRAN would take a long time to reach global acceptance. This report shows the specific outlook over a 10-year timeline, as we can now see a path toward widespread adoption. We expect the biggest growth when new spectrum arrives in the 2028 timeframe. By 2032, vRAN software will be used in more than 30% of new deployments." Subscribers to Mobile Experts research will receive: Full access to the 55-page Virtual RAN 2023 report; 49 comprehensive charts and figures; Cost analysis over the life cycle of a mobile network; Access to the analysts behind the reports. About Mobile Experts Inc.: Mobile Experts provides insightful market analysis for the mobile infrastructure and mobile handset markets. Recent publications focus on ORAN, Macro and Massive MIMO Base Stations, Industrial Private 5G, and more.

Read More


Opera adds free VPN to Opera for iOS, becomes the first browser to bring coverage to all platforms

Prnewswire | April 18, 2023

Opera – the company behind the award-winning family of web browsers – is announcing the extension of its free browser VPN service to Opera Browser for iOS. Already available to some users for early access, the full rollout will be completed within the coming weeks. With this addition, Opera became the first web browser to offer a free built-in VPN across all major platforms, including Mac, Windows, Linux, Android, and iOS. Staying private online is becoming increasingly challenging. When users browse the internet, they can be subject to data collection from websites and online services, many of which are not always transparent about how they store and use this data. Meanwhile, unsecure networks, such as some public Wi-Fi are vulnerable to attacks from bad actors, which can compromise sensitive personal data like web banking information or credit card details. VPNs, as a result, are an increasingly essential feature of life online – they help protect one's identity and activity so that users can peruse the internet privately, their personal information safe from prying eyes. With the addition of its VPN service to iOS, Opera becomes the first browser company to offer a built-in, free VPN on every platform. Opera's VPN service requires no subscription, no logging into an account, and no additional extensions – users simply need to toggle a switch in the main menu to browse in peace, since the Opera Browser makes sure VPN traffic is encrypted and IP address is private. "Opera has always been known for its unique feature set. We are proud to bring our free built-in VPN to all major platforms and to be the first browser company to do so. Our commitment to providing users with a secure browsing experience has led us to develop this feature over the years. We are excited to bring this vital tool to iOS users to ensure their online safety and privacy," said Jørgen Arnesen, EVP Mobile at Opera. A no-log service, the VPN does not collect any personal data or information related to users' browsing history or originating network address, ensuring anonymity. Fast and secure, users have instant access to virtual locations around the world. The Opera Browser for iOS is an award-winning browser that is enjoyed by millions of users worldwide. Featuring an interface that has garnered multiple design awards, the browser affords an unparalleled user experience. Designed to be used on the go, Opera's Fast Action Button gives users the full range of navigation tools within a thumb's reach. Users can additionally keep photos, articles, recipes, travel ideas, and links with them at all times with My Flow, which allows for seamless and secure file sharing between phones, tablets, and computers. The browser even integrates a native Crypto Wallet, enabling users to keep track of their digital assets at all times. Apart from its convenience, the Opera Browser for iOS also offers unparalleled speed and security. It features, for example, a built-in ad blocker – speeding up the loading process as well as shielding users from unwanted advertisements – plus the Apple Intelligent Tracking Prevention, which blocks third party tracking cookies and cookie dialogue. The browser also boasts Opera's Cryptojacking Protection, which safeguards users from having their device's resources hijacked for crypto mining. The free VPN service will now complete the package, affording users protection as they browse the internet. Concurrent with the ongoing rollout of the free VPN service, Opera Browser for iOS is also receiving a pair of additional upgrades. A Bookmarks feature will allow users to better organize their lives online, and coupled with Speed Dial ensure immediate access to what's most important. And for football fans, a new Live Scores feature lands on the browser's homepage. A scoreboard that displays the day's matches – whether they are upcoming, in progress, or the final whistle has already gone – Live Scores will help users stay on top of the action worldwide. To start using the free VPN, users just need to download the Opera Browser for iOS and turn the VPN on in the app. The full rollout will be completed within the coming weeks, so VPN will become available for all users shortly. More information is available on the official website. About Opera Opera is a web innovator building on more than 25 years of innovation that started with the Opera web browser. While Opera is leveraging its brand and engaged user base in order to grow and develop new products and services for people who seek a better internet experience, Opera's PC and mobile web browsers, content discovery platform Opera News, and apps dedicated to gaming, and Web3 are already the trusted choices of hundreds of millions of active and engaged users. Opera is headquartered in Oslo, Norway, and listed on the NASDAQ Stock Exchange under the OPRA ticker symbol. Download and access Opera's products and services from About Opera for iOS Fast, safe and private, Opera Browser is a beautifully designed web browser with a Red Dot Award for its stunning user interface. Enjoyed by millions of fans across the world, it's built for people on the go and features a lightning fast web search for instant results. With built-in security features such as Apple Intelligent Tracking Prevention and Cryptojacking Protection – plus a native Crypto Wallet – Opera Browser offers users the optimal iOS experience. Opera Browser has a 4.7 star rating in the App Store and has been reviewed by more than 600,000 people worldwide.

Read More