Trickbot uses compromised MikroTik routers as C2 communication proxies | allinfosecnews.com

March 17, 2022, 11:28 a.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

MikroTik routers are getting compromised to serve as communication proxies for Trickbot malware, to enable Trickbot-affected devices to communicate with their their C2 server in a way that standard network defense systems won’t detect, Microsoft researchers have found. MikroTik routers under attack Trickbot is a modular trojan that’s been around since 2016 and is often used by cybercriminals to deliver ransomware or other malware. Previous attempts to cripple the Trickbot botnet have been just partly … More →

The post …

c2 commun communication don't miss featured news internet of things malware microsoft mikrotik proxies routers trickbot

More from www.helpnetsecurity.com / Help Net Security

Veeam acquires Coveware to boost its ransomware protection capabilities an hour ago | www.helpnetsecurity.com

acquisition attacks capabilities continue +22

CrushFTP zero-day exploited by attackers, upgrade immediately! (CVE-2024-4040) 3 hours ago | www.helpnetsecurity.com

attackers censys configuration configuration files +27

Trellix Email Security for Microsoft Office 365 improves email defense 4 hours ago | www.helpnetsecurity.com

cost cost-effective customers defender +24

Align introduces ransomware prevention feature, powered by Adlumin 5 hours ago | www.helpnetsecurity.com

adlumin align and response detect +21

The rising influence of AI on the 2024 US election 8 hours ago | www.helpnetsecurity.com

artificial artificial intelligence attackers cybersecurity +21

10 colleges and universities shaping the future of cybersecurity education 9 hours ago | www.helpnetsecurity.com

berkeley carnegie mellon carnegie mellon university certificate +25

People doubt their own ability to spot AI-generated deepfakes 9 hours ago | www.helpnetsecurity.com

artificial intelligence cybercrime cybersecurity deepfake +18

What is multi-factor authentication (MFA), and why is it important? 9 hours ago | www.helpnetsecurity.com

access management advisory authentication barr advisory +26

Behavioral patterns of ransomware groups are changing 10 hours ago | www.helpnetsecurity.com

addition affiliates as-a-service changing +16

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Penetration Tester

@ Resillion | Bengaluru, India

View on infosec-jobs.com

Senior Backend Software Engineer (Java) - Privacy Engineering (Open to remote across ANZ)

@ Canva | Sydney, Australia

View on infosec-jobs.com

(Senior) Information Security Professional (w/m/d)

@ IONOS | Deutschland - Remote

View on infosec-jobs.com

Information Security (Incident Response) Intern

@ Eurofins | Katowice, Poland

View on infosec-jobs.com

Game Penetration Tester

@ Magic Media | Belgrade, Vojvodina, Serbia - Remote

View on infosec-jobs.com