Following ongoing research our team, IBM Security X-Force has uncovered evidence indicating that the Russia-based cybercriminal syndicate “Trickbot group” has been systematically attacking Ukraine since the Russian invasion — an…
Browsing CategoryTrickbot
Trickbot Group’s AnchorDNS Backdoor Upgrades to AnchorMail
IBM Security X-Force researchers have discovered a revamped version of the Trickbot Group’s AnchorDNS backdoor being used in recent attacks ending with the deployment of Conti ransomware. The Trickbot Group,…
TrickBot Gang Uses Template-Based Metaprogramming in Bazar Malware
Malware authors use various techniques to obfuscate their code and protect against reverse engineering. Techniques such as control flow obfuscation using Obfuscator-LLVM and encryption are often observed in malware samples.…
TrickBot Bolsters Layered Defenses to Prevent Injection Research
This post was written with contributions from IBM X-Force’s Limor Kessem and Charlotte Hammond. The cyber crime gang that operates the TrickBot Trojan, as well as other malware and ransomware…
Trickbot Rising — Gang Doubles Down on Infection Efforts to Amass Network Footholds
IBM X-Force has been tracking the activity of ITG23, a prominent cybercrime gang also known as the TrickBot Gang and Wizard Spider. Researchers are seeing an aggressive expansion of the…
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Ransomware has become the number one cyber threat to organizations, making up nearly 25% of attacks IBM X-Force Incident Response remediated in 2020. Ransomware is making headlines on a regular…
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Ransomware has become the number one cyber threat to organizations, making up nearly 25% of attacks IBM X-Force Incident Response remediated in 2020. Ransomware is making headlines on a regular…
S3 Ep36: Trickbot coder busted, passwords cracked, and breaches judged [Podcast]
Latest episode – listen now!
Latvian woman charged with writing malware for the Trickbot Group
Looking for contract programming work? You might be surprised at what’s on offer out there.
TrickBot’s Survival Instinct Prevails — What’s Different About the TrickBoot Version?
October 2020 saw the TrickBot Trojan, a prominent cybercrime gang’s tool of choice, suffer a takedown attempt by security vendors and law enforcement. Unfortunately, the takedown was not effective, and…