#BabukEncryptor

SEXi Ransomware Rebrands as ‘APT Inc.,’ Keeps Old Methods

by

July 15, 2024 at 04:42PM The SEXi ransomware group, now operating as APT Inc., uses leaked Babuk and LockBit 3 encryptors to target VMware ESXi and Windows servers. They demand ransom varying from thousands to millions and have no known weaknesses in their encryption methods. Victims have publicly shared their experiences, including ransom notes with … Read more

SEXi ransomware rebrands to APT INC, continues VMware ESXi attacks

by

July 15, 2024 at 11:26AM APT INC, formerly known as SEXi ransomware operation, has targeted various organizations using Babuk and LockBit 3 encryptors to attack VMware ESXi servers and Windows. The threat actors have gained attention for attacking IxMetro Powerhost and continue to operate with ransom demands ranging from tens of thousands to millions. Unfortunately, … Read more