Trickbot uses compromised MikroTik routers as C2 communication proxies

17 March 2022

MikroTik routers are getting compromised to serve as communication proxies for Trickbot malware, to enable Trickbot-affected devices to communicate with their their C2 server in a way that standard network defense systems won’t detect, Microsoft researchers have found. MikroTik routers under attack Trickbot is a modular trojan that’s been around since 2016 and is often used by cybercriminals to deliver ransomware or other malware.

Read full article on Help Net Security

Date:

17 March 2022

Categorie(s):

NEWS

Tag(s):

Internet of Things, IT, Microsoft, MikroTik, News

AT&T, Verizon, Sprint, T-Mobile US fined $200M for selling off people’s location info29 April 2024
Board’s Pivotal Role in Cybersecurity as CISO-CEO Communication Gaps Continue – BSW #34829 April 2024
Meet Silver SAML: Golden SAML in the Cloud – Eric Woodruff – BSW #34829 April 2024
F5 shares fall over 9% on disappointing third quarter guidance29 April 2024
Google blocked 2.3M apps from Play Store last year for breaking the G law29 April 2024