Chilean hosting provider hit by ransomware targeting VMware ESXi servers
Learn More
IxMetro Powerhost, a Chilean hosting firm that operates under the umbrella of PowerHost, is hit by a significant ransomware attack orchestrated by a newly identified ransomware gang known as SEXi. The ransomware group behind the attack has demanded a ransom of two bitcoins per victim, which would total a sum of $140 million.
The incident primarily targeted the company's VMware ESXi servers, including those dedicated to virtual private server (VPS) hosting for clients across the United States, South America, and Europe. The cyberattack led to the encryption of critical servers and backups, rendering customer websites and services hosted on these servers inaccessible.
In an attempt to recover from the incident IxMetro has been working to restore terabytes of data from encrypted backups. However, the company has issued a warning to its customers about the potential impossibility of recovering the affected servers.
To mitigate the impact on VPS customers and assist those who still possess their website content, PowerHost has offered to establish new VPS setups, enabling customers to resume online operations.
