Novel TargetCompany Ransomware Linux Variant Now Attacks ESXi

The TargetCompany ransomware group has developed a new Linux variant using a custom shell script for payload delivery and execution, targeting VMWare ESXi environments to increase disruption and ransom payment chances. This variant exfiltrates victim data to two servers and is part of a broader campaign, with significant activity in Taiwan, India, Thailand, and South Korea. Continuous evolution of their techniques highlights the need for robust cybersecurity measures.