Security News > 2022 > August > BazarCall attack increasingly used by ransomware threat actors
2022-08-16 17:11
AdvIntel has released a new publication about several threat actors now using BazarCall in an effort to raise awareness of this threat.
Once done, the threat actor has a functional backdoor to the victim's computer, which can later be used for further exploitation.
Figure A. Several ransomware threat actors at stake.
The call back phishing attack is heavily tied to Conti, the infamous ransomware threat actor who broke into several different groups in 2021.
The third threat group using the BazarCall technique is Roy/Zeon.
Why is BazarCall a revolution for ransomware threat groups?
News URL
https://www.techrepublic.com/article/bazarcall-attack-increasingly-used-by-ransomware-threat-actors/
Related news
- New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems (source)
- Five backup lessons learned from the UnitedHealth ransomware attack (source)
- Mega US healthcare payments network restores system 9 months after ransomware attack (source)
- SafePay ransomware gang claims Microlise attack that disrupted prison van tracking (source)
- Blue Yonder ransomware attack disrupts grocery store supply chain (source)
- Starbucks, grocery stores impacted by Blue Yonder ransomware attack (source)
- VPN vulnerabilities, weak credentials fuel ransomware attacks (source)
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Vodka maker Stoli files for bankruptcy in US after ransomware attack (source)
- Romanian energy supplier Electrica hit by ransomware attack (source)