A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti, an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 m…
Tag: TrickBot
North America
Trickbot Group’s AnchorDNS Backdoor Upgrades to AnchorMail
by Charlotte Hammond •
IBM Security X-Force researchers have discovered a revamped version of the Trickbot Group’s AnchorDNS backdoor being used in recent attacks ending with the deployment of Conti ransomware. The Trickbot Group, which X-Force tracks as ITG23, is a cybercriminal gang known primarily for developing the Trickbot banking Trojan, which was first identified in 2016 and initially […]
The post Trickbot Group’s AnchorDNS Backdoor Upgrades to AnchorMail appeared first on Security Intelligence.
Eurasia
Financial cyberthreats in 2021
by Kaspersky •
This report provides insight into 2021 financial threat trends and statistics, including data on banking malware for Windows and Android, banking, payment system and e-shop phishing, etc.
North America
TrickBot Gang Uses Template-Based Metaprogramming in Bazar Malware
by Kevin Henson •
Malware authors use various techniques to obfuscate their code and protect against reverse engineering. Techniques such as control flow obfuscation using Obfuscator-LLVM and encryption are often observed in malware samples. This post describes a specific technique that involves what is known as metaprogramming, or more specifically template-based metaprogramming, with a particular focus on its implementation […]
The post TrickBot Gang Uses Template-Based Metaprogramming in Bazar Malware appeared first on Security Intelligence.
North America
TrickBot Bolsters Layered Defenses to Prevent Injection Research
by Michael Gal •
This post was written with contributions from IBM X-Force’s Limor Kessem and Charlotte Hammond. The cyber crime gang that operates the TrickBot Trojan, as well as other malware and ransomware attacks, has been escalating activity. As part of that escalation, malware injections have been fitted with added protection to keep researchers out and get through […]
The post TrickBot Bolsters Layered Defenses to Prevent Injection Research appeared first on Security Intelligence.
Security Bloggers, Security Vendor News
History’s Most Notorious Ransomware Gangs
by Anthony M. Freed •
In a recent study, titled Ransomware: The True Cost to Business, we found that the costs of ransomware have increased for organizations. We learned that two-thirds of organizations experienced significant revenue loss following a ransomware…
Malware Indicators (IoCs)
New TrickBot Phishing Technique Checks Device Screen Resolution To Evade Detection
by Abeerah Hashim •
The infamous TrickBot malware has now adopted another evasive feature to escape security checks. As…
New TrickBot Phishing Technique Checks Device Screen Resolution To Evade Detection on Latest Hacking News.
Uncategorized
Alleged Trickbot malware gang member extradited to United States, and appears in court
by Graham Cluley •
A 38-year-old Russian national has appeared in a US federal court, after being extradited from South Korea, to face charges of his alleged involvement in the notorious Trickbot malware gang.
Read more in my article on the Hot for Security blog.
Uncategorized
Alleged Russian malware developer arrested after being stranded in South Korea due to COVID-19 pandemic
by Graham Cluley •
I hate to give advice to those who work for cybercrime gangs, but maybe – if they care about their liberty – they should think long and hard before making any international travel plans.
Read more in my article on the Hot for Security blog.