Helldown Ransomware Targets Linux and VMware Server Environments
A new variant of ransomware called Helldown, which emerged earlier this year, is now causing alarm as it begins targeting Linux and VMware server environments. This shift has raised concerns among cybersecurity experts, as many critical IT systems operate on Linux-based servers, which can support millions of virtual machines (VMs). This provides cybercriminals with the opportunity to disable active VMs before encryption occurs.
In March 2024, experts from Halcyon Cyber Resilience, an AI-based security platform, identified Helldown. It appears to be a derivative of the Lockbit 3.0 ransomware family and shares code with Darkrace and Donex. This malware is capable of disrupting Virtual Machines within controlled environments, often avoiding detection by automated security systems.
Security firm Cyfirma reports that the group responsible for spreading this file-encrypting malware has successfully attacked at least 41 victims in the United States and Europe. The attackers are now focusing on expanding their reach to businesses in the UK, Australia, and the Middle East.
Ransomware operators have increasingly used extreme tactics, such as deleting all encrypted data if the victim fails to pay the ransom within the stipulated time. This underscores the importance of taking proactive security measures and staying vigilant to prevent potential attacks that could devastate businesses in the future.
India Imposes Five-Year Ban on WhatsApp Data Sharing
India’s Competent Authority has announced a regulatory order banning WhatsApp from sharing user data with its other services for the next five years. This ban stems from Meta’s January 2021 data-sharing policy, which provided users with little or no choice to opt-out of the practice. Under the new order, WhatsApp is prohibited from sharing user data across its platform and other Meta-owned services.
In addition to the ban, India has imposed a substantial $850 million fine on WhatsApp for failing to adequately inform users that their data would be shared with Facebook’s online marketplace, which is integrated into the Facebook platform in a classified format.
This move follows a similar action taken by the Irish Data Protection Commission, which imposed a €225 million penalty on WhatsApp in 2021 for its integration with Facebook Marketplace. While India’s action is somewhat delayed, it signals a growing effort to enforce stricter data protection policies, with the potential for further appeals.
