Trickbot WHO?

Share On Facebook
Share On Twitter
Share On Linkedin

Our desire for timely information on Coronavirus helps propel malevolent social engineering to success around this theme. From 21 to 24 March, the Infoblox threat intelligence researchers observed yet another malicious spam email campaign. This one used a fraudulent Coronavirus alert from the World Health Organization (WHO) to deliver Trickbot banking malware.

Trickbot is a modular banking trojan that targets customers of major banks. Once Trickbot infects a victim, it will attempt to steal sensitive financial information and exfiltrate that data to a command and control (C2) server. Trickbot also attempts to move laterally across vulnerable networks to infect additional systems.

To find out more detailed information about this emerging threat please download our report here: https://insights.infoblox.com/threat-intelligence-reports/threat-intelligence–66

Labels:

Infoblox Threat Intel

Infoblox Threat Intel is the leading creator of original DNS threat intelligence, distinguishing itself in a sea of aggregators. What sets us apart? Two things: mad DNS skills and unparalleled visibility. DNS is notoriously tricky to interpret and hunt from, but our deep understanding and unique access give us a backstage pass to the internet's inner workings. We're proactive, not just defensive, using our insights to disrupt cybercrime where it begins. We also believe in sharing knowledge to support the broader security community by publishing detailed research and releasing indicators on GitHub. In addition, our intel is seamlessly integrated into our Infoblox DNS Detection and Response solutions, so customers automatically get the benefits of it, along with ridiculously low false positive rates.

View All Posts

You might also be interested in

You might also be interested in

×