Boolka: From Scripting to Sophisticated Malware Attacks

Boolka, a threat actor active since 2022, has steadily escalated their tactics. Initially, they relied on injecting websites with scripts to steal form data. By 2024, however, Boolka developed a custom malware delivery platform to distribute the BMANAGER trojan, highlighting Boolka’s transition from simple web attacks to more sophisticated and potentially devastating malware-based assaults.