The Register: LockBit’s new variant is ‘most dangerous yet,’ hitting Windows, Linux and VMware ESXi

Sep 26, 2025

—

Source URL: https://www.theregister.com/2025/09/26/lockbits_new_variant_is_most/
Source: The Register
Title: LockBit’s new variant is ‘most dangerous yet,’ hitting Windows, Linux and VMware ESXi

Feedly Summary: Operation Cronos didn’t kill LockBit – it just came back meaner
Trend Micro has sounded the alarm over the new LockBit 5.0 ransomware strain, which it warns is “significantly more dangerous" than past versions due to its newfound ability to simultaneously target Windows, Linux, and VMware ESXi environments. …

AI Summary and Description: Yes

**Summary:** The emergence of LockBit 5.0 ransomware, as reported by Trend Micro, presents a significant escalation in threat intelligence, particularly for organizations operating across multiple environments (Windows, Linux, VMware ESXi). This new version’s capabilities necessitate heightened attention from security professionals in threat detection and response strategies.

**Detailed Description:**
The LockBit 5.0 ransomware strain represents a major advancement in malware technology, enhancing its threat landscape considerably. The following points outline its implications:

– **Multi-Environment Targeting:** This version is designed to attack multiple operating systems simultaneously. This includes:
– Windows
– Linux
– VMware ESXi
– **Increased Risk Level:**
– The ability of LockBit 5.0 to attack diverse environments increases the potential impact on organizations that may not have uniform defenses across different platforms, leading to more extensive data breaches and financial losses.
– **Reinforcement of Security Measures:**
– Organizations are urged to reassess their cybersecurity posture and reinforce defenses against this newer variant. This may include:
– Implementation of stricter access controls
– Regular patch management across all systems
– Enhanced monitoring for unusual behavior, particularly in hybrid environments.
– **Importance of Incident Response Plans:**
– With the rise of complex ransomware, having a robust incident response strategy is critical. Organizations must prepare for potential ransomware attacks by:
– Conducting regular drills on ransomware scenarios
– Ensuring backups are secure and not susceptible to ransomware encryption
– Educating employees about phishing and other common ransomware delivery methods.

Given this evolution in ransomware tactics, security and compliance professionals will need to be vigilant and proactive in updating strategies and tools to counteract these new threats effectively.

2 2025 5 a access access control access controls Act advancement age AI All and Aria ARM art as at attack attacks backup backups Behavior Bi breach breaches by C capabilities CI CIA co compliance compliance professionals control controls critical cross cyber cybersecurit Cybersecurity cybersecurity posture D data data breach Data breaches de defense defenses design detection e effective encryption end environment environment targeting environments escalation financial financial loss financial losses following for g Gen GIS H HR http HTTPS hybrid hybrid environment hybrid environments impact implementation implications in incident incident response incident response plan incident response plans incident response strategy Inforce Intel intelligence inux io iOS Iron J Just k l land leading led level Li line Linux Lock LockBit low M malware man management mean measures Micro Monitor monitoring multi N new no o of on ons operating system operating systems operation organization organizations oS oss other out over Patch Patch Management per phi phishing platform platforms point post potential pre pro proactive professionals ps Q R ransom ransomware ransomware attack ransomware attacks ransomware tactics rate RCE re reinforcement report response Response Plan response strategies response strategy Risk Ro s sec secure security security and compliance security measure security measures security posture security professionals side Sig Sim source SSE strategies Strategy system systems T tactics target tech technology ted the threat threat detection threat intel threat intelligence threat landscape threats to tool tools Tor TP Trend Micro UN up ups US V version vm VMware Ware Wi Wind Windows x z