Skip to main content

TrickBot returns with new attack that compromised 250 million email addresses

The TrickBot malware, which earlier this year worked in tandem with the Ryuk ransomware to siphon millions of dollars for hackers, is back with a new attack that may have compromised as many as 250 million email accounts.

In a report by Deep Instinct, the cybersecurity company revealed a new variant of TrickBot that teams it up with a malicious, email-based infection and distribution module dubbed TrickBooster.

The new attack starts the same as in previous methods, with TrickBot infiltrating a victim’s computer. The malware then forces the machine to download TrickBooster, which reports back to a dedicated command and control server with lists of email addresses and log-in credentials harvested from the victim’s inbox, outbox, and address book. Afterwards, the TrickBooster server instructs the infected machine to send out malicious infection and spam emails, with the emails deleted from the outbox and trash folder to remain hidden from the victim.

In Deep Instinct’s investigation of TrickBooster and its associated network infrastructure, the cybersecurity firm discovered a database containing 250 million email accounts that were harvested by TrickBot operators. The addresses were likely also targeted with the malicious emails.

The recovered email dump includes about 26 million addresses on Gmail, 19 million on Yahoo, 11 million on Hotmail, 7 million on AOL, 3.5 million on MSN, and 2 million on Yahoo U.K. The compromised accounts also involved many government departments and agencies in the United States, including but not limited to the Department of Justice, the Department of Homeland Security, the Department of State, the Social Security Administration, the Internal Revenue Service, the Federal Aviation Administration, and the National Aeronautics and Space Administration. Others affected include government organizations and universities in the United Kingdom and Canada.

Deep Instinct spot checked a few thousands of the compromised email accounts against previously recorded security breaches, and found that the database is a new batch of addresses that has not been previously seen or reported.

The discovery of TrickBooster “highlights the success and sophistication of TrickBot,” according to Deep Instinct, while the model was described as “a powerful addition to TrickBot’s vast arsenal” of methods of attack.

Deep Instinct said that it continuing its research and analysis into TrickBooster, and that it is in the process of reporting the details of the new TrickBot attack to the authorities.

Aaron Mamiit
Aaron received a NES and a copy of Super Mario Bros. for Christmas when he was 4 years old, and he has been fascinated with…
The 6 best laptops for engineers in 2024
The back of the ASUS ROG Zephyrus M16 sitting on a table

Engineering can be very difficult, from the long nights to the great responsibility; if you don't have the right tools to get things done properly, it can feel overwhelming. Luckily, most modern engineering happens with computer assistance, so having a solid PC is important both to doing a good job and maintaining your mental health so that you aren't struggling with your tools. That's why we've gone out and picked our favorite engineering laptops and put them below for you to check out. While it's true that there are a massive number of different types of engineering, most of these should fit the bill across the board because they have powerful processors and a lot of RAM to work with.
The Best Laptops for Engineers in 2024

Buy the if you want the best overall laptop for engineers
Buy the  if you want the best MacBook laptop for engineers
Buy the  if you want the best 2-in-1 laptop for engineers
Buy the  if you want the best thin and portable laptop for engineers
Buy the  if you want the best value laptop for engineers

Read more
How to convert a PDF to JPG on Mac, Windows, and web
Person using their laptop on the floor.

When it comes to cross-platform files, two of the most widely used image formats you’ll see are PDFs and JPGs. The Portable Document Format (PDF) was launched by Adobe back in 1992, while the Joint Photographic Experts Group (JPG) was unveiled the same year, and was developed by its titular organization, in collaboration with IBM, Mitsubishi, AT&T, and Canon.

Read more
NordVPN free trial: Try the service for free for a month
The best VPN for Mac is NordVPN.

VPNs can offer a lot of great advantages depending on what sort of things you want to do. For example, if you're traveling and still want to watch content from back home, they can offer you a way to get around geoblocking that tends to happen. Alternatively, they can help protect you against man-in-the-middle attacks that aim for your identity information, such as online passwords or even credit card numbers, which is especially an issue if you tend to connect to public Wi-Fi networks. While they aren't perfect security tools, they're a great addition to make your life easier, especially since some of the best VPNs include a whole suite of products, including ad blockers.

VPNs are premium subscription services though, meaning they're not free (well, some are, but you probably shouldn't use them).  VPN deals can cut some cash off the price tag, but there's only one way to get one absolutely free -- free trials. NordVPN is one of the best VPN services, so the NordVPN free trial is very popular. It's great for security, and it's the best VPN for Netflix. Read on to learn how you can take advantage of the NordVPN free trial.
Is there a NordVPN free trial?

Read more