New TrueBot Malware Variant Leveraging Netwrix Auditor Bug and Raspberry Robin Worm

09-Dec-22

Cybersecurity experts have noted a rise in TrueBot infections, which mostly target Pakistan, Pakistan, Mexico, and the United States. Data theft and the execution of the Clop ransomware were two examples of post-compromise activities, according to a report on Thursday by security researcher Tiago Pereira.

According to Cisco Talos, the attackers behind the operation have switched from utilising malicious emails to new delivery techniques such the exploitation of the Raspberry Robin worm and a now-patched remote code execution vulnerability in Netwrix auditor.

Read More…