A ransomware called JungleSec is infecting victims through unsecured IPMI (Intelligent Platform Management Interface) cards since early November. The JungleSec Ransomware was originally reported in early November, but there was no indication as to how it was being infected. In conversations between victims it was discovered that attackers installed the JungleSec ransomware through the server’s.IPMI is a management interface built into server motherboards or installed as an add-on card that allow administrators to remotely manage the computer, power on and off the computer.
Source: https://www.bleepingcomputer.com/news/security/junglesec-ransomware-infects-victims-through-ipmi-remote-consoles/