Hackers using TrueBot malware for phishing attacks in US, Canada, officials warn

Hackers are using TrueBot malware in phishing attacks against US and Canadian targets, warn authorities including the FBI and the Cybersecurity and Infrastructure Security Agency. The hackers are exploiting a vulnerability in Netwrix Auditor software. TrueBot is a botnet used by the Clop ransomware group and others to collect and steal data. It has been in circulation since 2017, with recent activity targeting the education sector.