The creators of the notorious TrickBot malware have signed two new affiliates, a sure sign that we can expect to observe more attacks using this ransomware in the near future. Microsoft estimates that TrickBot has already infected over 3 million devices.
The new affiliates are Shathak and Hive0107, both groups known previously for large-scale phishing campaigns. As the TrickBot team is also responsible for the Conti ransomware, it's likely that we'll see an increase in Conti activity as well.
Cybercriminals are frequently escalating their attacks, both with improvements to their malware and with the addition of new partners-in-crime. Malware is most often delivered via email, and it's important to have solutions in place to mitigate these attacks.
Acronis Cyber Protect's advanced behavioral detection engine identifies and blocks TrickBot, Conti, and other known and unknown malware variants before they can execute, while the Advanced Email Security add-on pack filters out malware-laden emails and URLs entirely — preventing your employees and clients from ever interacting with them.
