Security News > 2022 > August > BazarCall attack increasingly used by ransomware threat actors
2022-08-16 17:11
AdvIntel has released a new publication about several threat actors now using BazarCall in an effort to raise awareness of this threat.
Once done, the threat actor has a functional backdoor to the victim's computer, which can later be used for further exploitation.
Figure A. Several ransomware threat actors at stake.
The call back phishing attack is heavily tied to Conti, the infamous ransomware threat actor who broke into several different groups in 2021.
The third threat group using the BazarCall technique is Roy/Zeon.
Why is BazarCall a revolution for ransomware threat groups?
News URL
https://www.techrepublic.com/article/bazarcall-attack-increasingly-used-by-ransomware-threat-actors/
Related news
- Lee Enterprises newspaper disruptions caused by ransomware attack (source)
- Southern Water says Black Basta ransomware attack cost £4.5M in expenses (source)
- Qilin ransomware claims attack at Lee Enterprises, leaks stolen data (source)
- Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks (source)
- Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
- Hunters International ransomware claims attack on Tata Technologies (source)
- Toronto Zoo shares update on last year's ransomware attack (source)
- Outsmarting Cyber Threats with Attack Graphs (source)
- Ransomware gang creates tool to automate VPN brute-force attacks (source)
- SANS Institute Warns of Novel Cloud-Native Ransomware Attacks (source)