Security News > 2021 > October > TrickBot Gang Enters Cybercrime Elite with Fresh Affiliates

TrickBot Gang Enters Cybercrime Elite with Fresh Affiliates
2021-10-15 18:05

The development also speaks to the TrickBot gang's increasing sophistication and standing in the cybercrime underground, IBM researchers said: "This latest development demonstrates the strength of its connections within the cybercriminal ecosystem and its ability to leverage these relationships to expand the number of organizations infected with its malware."

According to IBM, the TrickBot gang has now added powerful additional distribution tactics to its bag of tricks, thanks to the two new affiliates.

In the end, vulnerable computers become infected with malware - usually the BazarLoader implant, which is another malware in the TrickBot gang's arsenal, and sometimes TrickBot itself.

These types of attacks have continued into the autumn, enhanced by the fresh distribution approaches, according to IBM. Meanwhile, since 2020, the TrickBot gang has been heavily involved in the ransomware economy, with the TrickBot malware acting as an initial access point in campaigns.

IBM X-Force researchers noted that the most important development since June for the distribution of the TrickBot gang's various kinds of malware is the newly minted partnership with Hive0106.

Another prominent affiliate that hooked its wagon up to the TrickBot gang this summer is Hive0107, which spent the first half of the year distributing the IcedID trojan.


News URL

https://threatpost.com/trickbot-cybercrime-elite-affiliates/175510/