Friday, July 23, 2021

Trickbot Malware Comeback using the new VNC module

Must Read

Apple releases a patch for a security flaw found by researchers at Google and Microsoft

Apple releases fix for a bug that could affect iPhone, iPad, and Mac which could lead to arbitrary code...

Fearing drama, Mozilla opens public consultation Before Global Firefox DoH rollout

Mozilla has started now a public opinion and consultation period regarding how it might enable support for its contentious...

Latin American crime cartels turn to crypto to clean up their cash

Back in April 2019, Mexican authorities detained suspected human trafficker Ignacio Santoyo at a lavish area of this Caribbean...

On Monday Cybersecurity firm Bitdefender Published a Blog Post on Trickbot Malware that using the new VNC module to Spy on its Victims.

Trickbot Malware has discovered an updated VNC module that seems to be in active development, as its maintainers are updating it at a very fast pace.

This module is now delivered under a new name, observations also helped to map the attackers’ network architecture

Researchers have identified the software application that the attackers use to connect to victims’ computers. This tool is called VNCView.

In addition to upgraded modules, Bitdefender has noted a significant increase in command-and-control centers deployed around the world.

Trickbot Malware Comeback using the new VNC module

This new research focuses on an updated VNC module, which includes new functionalities for monitoring and intelligence gathering.

Now according to Bitdefender, the threat actor has been found actively developing an updated version of a module called “vncDll” that it employs against select high-profile targets for monitoring and intelligence gathering. The new version has been named “tvncDll.”

Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.


Please enter your comment!
Please enter your name here

Latest News

OAIC: Uber found to have interfered with the privacy of over 1.2 million Australians

The Office of the Australian Information Commissioner (OAIC) has determined that Uber Technologies, Inc. and Uber B.V. have interfered...

Over 80 US Municipalities data are exposed due to Misconfigured Amazon S3

A team of Cybersecurity researchers at Wizcase found major data exposure of Over 80 US Municipalities due to the Misconfigured Amazon S3 Bucket. This happened...

Formbook malware Upgraded as an XLoader malware to Attack macOS Systems

Researchers have spotted an upgraded malware variant of Formbook malware which is now Upgraded as an XLoader malware to Attack macOS Systems. Cybersecurity researchers on...

Millions of HP, Samsung, Xerox Printers are Vulnerable to 16 year old bug

A 16-year-old security vulnerability affects Millions of HP, Samsung, Xerox Printers Driver allows attackers to gain admin rights on systems using the vulnerable driver...

MosaicLoader malware targets cracked software via SEO poisoning

New MosaicLoader malware targets users that are searching to download cracked software. Cybercriminals run ad campaigns in search engine results to boost their malicious...

More Articles Like This