RTM Locker is a strain of ransomware developed by malicious actors that is capable of targeting Linux machines, marking the group’s first attempt to exploit an open source operating system. It is a private ransomware-as-a-service (RaaS) provider that has been active since 2015, and deliberately avoids targeting high-profile victims. The Linux version is specifically designed to target ESXi hosts, with the encryption process utilizing ECDH on Curve25519, Chacha20, and pthreads. If the encryption is successful, victims are urged to contact the support team within 48 hours via Tox or risk their data being published. To decrypt a file, both the public key and the attacker’s private key are needed.
To mitigate these potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net or you can try your self using check.website
Source: Hackernews