Ransomware Group

Abyss Locker

Also known as: Abyss

Status: active • First seen 2023-0375+ known victims

Abyss Locker attacks the servers that run virtual machines for businesses. By targeting these systems, they can lock up many virtual servers at once, causing massive disruption.

Overview

Abyss Locker is a ransomware operation that primarily targets VMware ESXi and Linux environments. The group focuses on hosting providers and enterprise virtualization infrastructure.

Target Industries

Technology, Hosting, Enterprise, Manufacturing

How They Attack

  • VMware ESXi targeting
  • Linux focus
  • Double extortion
  • Virtualization attacks

Notable Victims

Hosting providers (2023), Enterprise VMware environments

Is your business exposed?

How to Protect Against Abyss Locker

  1. 1.

    Patch VMware ESXi immediately

  2. 2.

    Harden Linux server configurations

  3. 3.

    Implement virtualization-specific security

MITRE ATT&CK Techniques

T1486, T1567, T1059, T1021

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices