MalasLocker Ransomware Targets Zimbra Servers, Demands Charity Donation
A new ransomware operation called MalasLocker is targeting Zimbra servers, stealing emails, and encrypting files. Instead of demanding a ransom payment, the threat actors claim to require a donation to charity to provide an encryptor and prevent data leaking. The operation began encrypting Zimbra servers towards the end of March 2023. It is unclear how the threat actors are breaching the Zimbra servers. The MalasLocker data leak site currently distributes stolen data for three companies and the Zimbra configuration for 169 other victims. The Age encryption tool used by MalasLocker is an uncommon method, with only a few ransomware operations using it, and all of them not targeting Windows devices. Malware: AgeLocker, MalasLocker [View Article](https://www.bleepingcomputer.com/news/security/malaslocker-ransomware-targets-zimbra-servers-demands-charity-donation/?&web_view=true)