Cybersecurity Agencies Sound Alarm on Rising TrueBot Malware Attacks

Cybersecurity agencies have warned about new versions of the TrueBot malware targeting firms in the US and Canada. The threat uses a critical vulnerability in Netwrix Auditor and its agents to siphon off data and spread ransomware. Connected to cybercriminal groups Silence and FIN11, the sophisticated malware attack initially exploits a vulnerability within the target’s system before proceeding to install additional malicious software. This broader-scale offensive approach comes after previous versions of TrueBot typically spread through malicious email attachments.