Security Market Segment LS
Thursday, 18 July 2019 14:49

TrickBooster malware compromising millions of email accounts

By

Security vendor Deep Instinct has detected malware that targets Microsoft Outlook and has compromised more than 250 million email accounts.

According to Deep Instinct security researchers, TrickBooster — a variant of the TrickBot malware that's been around since 2016 — has already compromised accounts associated with prominent government organisations, national security agencies, leading universities, more than 150 F500 companies as well as private users.

That 250 million includes 26 million Gmail accounts, 26 million Yahoo! accounts, 11 million Hotmail accounts, 3.5 million MSN accounts, and 2 million Yahoo! UK accounts.

TrickBooster's significance was realised when Deep Instinct researchers uncovered a database containing 250 million e-mail accounts harvested by TrickBot and TrickBooster operators, which were also used as lists of targets for malicious delivery and infection.

Once TrickBooster has gained a foothold, it steals addresses, accounts and log-in credentials, sends malicious weaponised messages, and deletes those messages from the victim's outbox and trash folders.

"The size, scale and sophistication of this cyberattack is one of the most advanced ever seen," said Deep Instinct chief executive and co-founder Guy Caspi.

"This malware actively avoids detection as it spreads and harvests enormous amounts of data. And while our investigations have uncovered that the attack has collected and targeted more than 250 million email accounts, it's clear from our analysis in the last 72 hours that this is just the tip of the iceberg.

"We are currently notifying key government and law-enforcement authorities globally to help minimise further damage."

According to Deep Instinct, one reason why TrickBooster was able to spread so widely before being detected is that its infecting executable does a particularly thorough job of cleaning up after itself.

LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACK

Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has high potential to be exposed to risk.

It only takes one awry email to expose an accounts payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 steps to improve your Business Cyber Security’ you will learn some simple steps you should be taking to prevent devastating malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you will learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips

DOWNLOAD NOW!

ADVERTISE ON ITWIRE NEWS SITE & NEWSLETTER

iTWire can help you promote your company, services, and products.

Get more LEADS & MORE SALES

Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]

OR CLICK HERE!

Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.

VENDOR NEWS & EVENTS

REVIEWS

Recent Comments