Operators of an unknown ransomware gang are using a Python script to encrypt virtual machines hosted on VMware ESXi servers.

It's a little snippet of Python code – 6KB – that strikes fast and nasty, taking less than three hours to complete from initial breach to encryption.

Attackers used a script written in Python during a recent ransomware attack which took just three hours, encrypting all the virtual disks on the target's virtual machine hypervisor. Andrew ...

A previously undocumented Python backdoor targeting VMware ESXi servers has been spotted, enabling hackers to execute commands remotely on a compromised system.

New Python ransomware targets virtual machines, ESXi hypervisors to encrypt disks By targeting ESXi, encryption was achieved in less than three hours on a corporate network.

Researchers at Sophos Group plc have released details of new ransomware written in Python that attackers used to compromise and encrypt virtual machines hosted on an ESXi hypervisor.