More

    TrickBot returns with new attack that compromised 250 million email addresses

    The TrickBot malware, which earlier this year worked in tandem with the Ryuk ransomware to siphon millions of dollars for hackers, is back with a new attack that may have compromised as many as 250 million email accounts.

    In a report by Deep Instinct, the cybersecurity company revealed a new variant of TrickBot that teams it up with a malicious, email-based infection and distribution module dubbed TrickBooster.

    The new attack starts the same as in previous methods, with TrickBot infiltrating a victim’s computer. The malware then forces the machine to download TrickBooster, which reports back to a dedicated command and control server with lists of email addresses and log-in credentials harvested from the victim’s inbox, outbox, and address book. Afterwards, the TrickBooster server instructs the infected machine to send out malicious infection and spam emails, with the emails deleted from the outbox and trash folder to remain hidden from the victim.

    In Deep Instinct’s investigation of TrickBooster and its associated network infrastructure, the cybersecurity firm discovered a database containing 250 million email accounts that were harvested by TrickBot operators. The addresses were likely also targeted with the malicious emails.

    The recovered email dump includes about 26 million addresses on Gmail, 19 million on Yahoo, 11 million on Hotmail, 7 million on AOL, 3.5 million on MSN, and 2 million on Yahoo U.K. The compromised accounts also involved many government departments and agencies in the United States, including but not limited to the Department of Justice, the Department of Homeland Security, the Department of State, the Social Security Administration, the Internal Revenue Service, the Federal Aviation Administration, and the National Aeronautics and Space Administration. Others affected include government organizations and universities in the United Kingdom and Canada.

    Deep Instinct spot checked a few thousands of the compromised email accounts against previously recorded security breaches, and found that the database is a new batch of addresses that has not been previously seen or reported.

    The discovery of TrickBooster “highlights the success and sophistication of TrickBot,” according to Deep Instinct, while the model was described as “a powerful addition to TrickBot’s vast arsenal” of methods of attack.

    Deep Instinct said that it continuing its research and analysis into TrickBooster, and that it is in the process of reporting the details of the new TrickBot attack to the authorities.

    Editors’ Recommendations

    • Laptop with some of world’s most dangerous malware sells for $1.35 million
    • Federal jury convicts malware creators of hijacking 400,000 computers
    • The best free antivirus software for 2019
    • Russian hackers behind ‘world’s most murderous malware’ probing U.S. power grid
    • Millions of Instagram influencers reportedly had private data exposed online






    Latest articles

    Oukitel previews C18 Pro in advance of April 20 debut

    OUKITEL’s newest phone, the WP6 is just hitting the market, but the device maker is already showcasing its next model. Indeed, the C18 Pro is on the horizon, and is expected to arrive in just a few days from now, April 20.Whereas the WP series is more for the rugged outdoor user type, the C series is the budget-minded line for less-demanding consumers. With that said, it does look to have a respectable amount of hardware and camera features.As more devices hit the market with multiple cameras, it has been suggested that some phone makers aren’t always truthful about their macro lenses. OUKITEL, for its part, figures to promote the C18 Pro around that very notion. Its slogan for the new handset? Divide true and fake.The C18 Pro is equipped with 16-megapixel main camera with an 8-megapixel wide angle, and 5-megapixel macro lens. And when some phone makers use AI algorithms to achieve macro shots, OUKITEL relies on the hardware.Other noteworthy details to look for in the C18 Pro include a 6.55 display and a 4,000mAh battery. In terms of performance, things should be pretty decent with 4GB RAM, 64GB storage, and Android 10.A preview video by OUKITEL (embedded below) demonstrates how the $149 C18 Pro fares against the pricier Xiaomi CC9 ProThe OUKITEL C18 Pro launches on April 20 with an introductory price of just $150. In the meanwhile, you can also enter a giveaway with a chance to win one of ten!EDITOR NOTE: This is a promoted post and should not be viewed as an editorial endorsement.

    The best free online classes to take based on your interests

    Come out of quarantine having learned something new

    Smart CCTV networks are driving an AI-powered apartheid in South Africa

    Last week, news broke that James Dean will star in a new movie-64 years after his death. A production company called Magic...

    Apple may be making major changes to some of its iPhone sizes next year

    Last week, news broke that James Dean will star in a new movie-64 years after his death. A production company called Magic...
    15.0k Followers
    Follow

    Related articles