TrickBot Comes to Cellular Carriers

28 August 2019

Researchers have discovered that TrickBot, a credential-theft botnet operated by the Gold Blackburn threat group, has been modified to target mobile device users on Sprint, T-Mobile, and Verizon cellular networks. The research, conducted by the Counter Threat Unit Research Team at SecureWorks, found that TrickBot is using its traditional techniques — a man-in-the-middle attack that captures a web session, routes it to a command-and-control server where code is injected to request user credentials, then sends the page to the victim — in requests to the websites run by the three cellular networks.

Read full article on Dark Reading

Date:

28 August 2019

Categorie(s):

NEWS

Tag(s):

Carriers, Cellular, TrickBot

Watch out for rogue DHCP servers decloaking your VPN connections7 May 2024
Major UK Security Provider Leaks Trove of Guard and Suspect Data7 May 2024
RSAC: Decoding US Government Plans to Shift the Software Security Burden7 May 2024
Law enforcement indicts mastermind behind LockBit ransomware gang7 May 2024
News live: Russian hacker sanctioned; China blames Australia for jet flare encounter7 May 2024