The RAAS model “Cyclops” developed by RAAS has recently been rebranded and is now known as “Knight”. The renaming of the model appears to be an attempt by the hackers to highlight the superior quality and nobility of their product, although doubts have been raised concerning these claims.
A recent report by the researchers at Uptycs, as stated in their latest blog post, reveals that the Cyclops ransomware stealer combo is compatible with Windows, MacOS, and Linux, including VMware ESXI, which is commonly used in corporate environments for virtual infrastructure management. This software provides various functionalities including virtual machine migration, resource reservation management, network virtualization, and more. Furthermore, ESXI can be integrated with other VMware products, such as VMware Vcenter Server, allowing for centralized control and monitoring of virtual media.