Trickbot Adds New Trick Linux Malware

Trickbot is about as bad as they come in the world of malware. Originally a malware strain from the Windows ecosystem, security professionals have recently found samples of the code in the wild that prove that Trickbot has made the jump to the Linux world as well.

One of the things that makes this such a nasty little threat is the fact that it's best viewed as a muti-function toolkit.

It isn't just simple malware, which often has a limited bag of tricks and a very specific function. This is essentially the Swiss Army Knife of malware.

Another is the fact that just about any would-be hacker can get his or her hands on the code. Trickbot is often rented by hackers around the world who use it as a service to infiltrate whatever network they set their sights on and harvest whatever sort of data they're after.

Finally though, there's the fact that a Trickbot attack isn't 'just' a Trickbot attack. Once that malware strain has stolen whatever data the user wanted, it will often then be used to deploy a ransomware strain like Conti or Ryuk. It hits the target system with a devastating one-two punch, stealing yet more data and then encrypting files and locking down broad swaths of the victim's network.

Full Article: https://www.aimcybersecurity.com/2020/08/17/trickbot-adds-new-trick-linux-malware/