B1txor20 is assembling its army of bot on Linux machines. It is exploiting the Log4j vulnerable systems to gain access and maintain foothold.

BVP47 is a NSA backed Tailored Access oprations (TAO) backdoor. It is detected by Chinese firm back in 2013 which it disclosed now.

Lockbit Linux ESXi Ransomware uses a combination of Advanced Encryption Standard (AES) and elliptic curve cryptography (ECC) algorithms for data encryption. This variant could have a big impact on victim organizations because of how ESXi, VMware’s hypervisor helps in managing servers.

AvosLocker is the latest ransomware gang that has added support for encrypting Linux systems to its recent malware variants, specifically targeting VMware ESXi virtual machines.

DeadBolt Ransomware encrypts user data on networked QNAP NAS devices using the AES-128 algorithm and then demands a ransom of 0.03 BTC (~$1100) to get the files back. At the same time, the original html page of the NAS devices is replaced with one prepared by ransomware.