Threat Post

Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth

The proxy is being distributed by the RIG and Fallout exploit kits. A previously undocumented proxy malware, dubbed “SystemBC,” is upping the stealth game by using SOCKS5 to evade detection. It’s ...
Threat Post

Ryuk, Egregor Ransomware Attacks Leverage SystemBC Backdoor

In the past few months researchers have detected hundreds of attempted SystemBC deployments globally, as part of recent Ryuk and Egregor ransomware attacks. Commodity malware backdoor SystemBC has ...
TechRadar

Tor malware is becoming a worryingly popular ransomware tool

Researchers at Sophos Labs have been tracking a new ransomware tool available on underground hacking forums which has evolved into a Tor proxy and remote control tool that is now being used in the ...
ITWire

Windows backdoor SystemBC being used by RaaS affiliates: Sophos

One of the many tools used by multiple ransomware groups in a similar way — suggesting that they are being used by ransomware-as-a-service affiliates — is the Windows backdoor SystemBC, global cyber ...
Bleeping Computer

Police seize over 100 malware loader servers, arrest four cybercriminals

An international law enforcement operation codenamed 'Operation Endgame' has seized over 100 servers worldwide used by multiple major malware loader operations, including IcedID, Pikabot, Trickbot, ...