Illusive Networks recently detected and thwarted a nation-state attack linked to a COVID-19 related phishing scam. That led to the discovery of new tools used by cyber criminals, and researchers are investigating the potential involvement of two or more groups.
Attack characteristics appear almost identical to the BazarBackdoor attack developed by TrickBot, a well-known cybercrime group.
The infographic below highlights how Illusive's deception technology identified suspicious attacker activity on a protected print server, and then further investigates attacker movements.
Illusive’s inescapable deception and attack surface reduction capabilities eliminate high-risk pathways to critical systems, force attackers to reveal themselves early in the threat lifecycle, and capture real-time forensics that accelerate incident response.
To view the more information about this discovery, read the full press release.
To learn how Illusive can help your security teams, please fill out the form on the right and we will be in contact with you soon.