QEMU abused to evade detection and enable ransomware delivery

Sophos X-Ops·vor 41 d·Reputabel

The use of hidden virtual machines (VMs) enables long-term access, credential harvesting, data exfiltration, and PayoutsKing ransomware deployment Categories: Threat Research Tags: virtual machine, QEMU, PayoutsKing, GOLD ENCOUNTER, CitrixBleed2

Kategorien cybersecurity · government-security

Originalquelle / Advisory ↗

Veröffentlicht

16.4.2026, 00:00:00

Abgerufen

27.5.2026, 04:13:33

Trust

reputable · 80/100

Sprache