Truebot exploits vulnerability in Netwrix to deploy Clop Ransomware

Threat Level – Red | Vulnerability Report
Download PDF

In 2017, Truebot was discovered to be linked to the Silence group and has affected more than 1,500 systems worldwide with shellcode, Cobalt Strike beacons, Grace malware, the Teleport tool, and Clop ransomware. A recent study has linked it to TA505.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox