Hackers using TrueBot malware for phishing attacks in US, Canada, officials warn

The FBI and Cybersecurity and Infrastructure Security Agency has warned that hackers are using TrueBot malware in phishing attacks against US and Canadian targets. Since May, the perpetrators have exploited a vulnerability in Netwrix Auditor software to deliver new TrueBot versions and steal data. Cybersecurity firm VMware Carbon Black has noted a surge in Truebot’s activities. U.S. and Canadian cybersecurity centres also issued an advisory on the threat.