Trickbot and TA551 Are Buddies
A connection was established between the TrickBot gang and the TA551 threat group as a major similarity was found in their tools and TTPs. They use Bazabackdoor and deploy the Cobalt Strike beacon on...
Tagged: trickbot gang
Diavol Ransomware’s Connection with Wizard Spider Revealed
FortiGuard Lab associated Diavol ransomware with the Russian Wizard Spider threat actor. Experts revealed noticing Diavol and Conti payloads being used in ransomware attacks targeting different systems in early June. The connection of ransomware...
Trickbot’s Sibling, Bazarbackdoor, is Hunting Down its Targets Vigorously
Researchers have observed a newer, stealthier version of BazarBackdoor, which is written in Nim language to enhance its evasion capabilities, being increasingly distributed through spam campaigns. Click here for image source link and to...
New TrickBot Module Explores UEFI/BIOS Firmware Vulnerabilities | Cyware Hacker News
TrickBot is growing its toolset to established its sights on firmware vulnerabilities to possibly deploy bootkits and choose entire manage of an contaminated technique. Picture and Report Resource website link Read much more on...
BazarLoader Backdoor, Another Powerful Malware From TrickBot Operators | Cyware Hacker News
Even though the TrickBot trojan is set to reboot its operations with a new backend infrastructure, the operators are building headway with an additional development dubbed BazarLoader (or BazarBackdoor). Image and Article Resource link...
Is Lazarus Related to Russian-Speaking Threat Actors? | Cyware Hacker News
TrickBot seems to have a treasure trove of compromised accesses that Lazarus can surely leverage. Lazarus has earlier been observed utilizing TrickBot’s codes in some of its assaults. Image and Article Resource connection Read...
