- The threat actors behind the 8Base ransomware are using a variant of Phobos ransomware for their cyber attacks.
- Cisco Talos has noted the increased activities of these cybercriminals.
- Most of the Phobos variants, as per Guilherme Venere, are being disseminated by SmokeLoader, a backdoor Trojan.
Ransomware Roughians: Phobos and 8Base
As if cyber threats weren’t scary enough, the villains behind the 8Base ransomware have brought an ally into the mix by using a variant of the Phobos ransomware. It’s like a horror sequel, but this time, it’s your computer’s data that’s getting critically endangered rather than clumsy teenagers.
Cisco Talos Chronicles The Rise in Cyber Crime
Illuminating like a cyber forensics Sherlock Holmes, Cisco Talos comes in to highlight the increased activities involving these digital desperados. Let’s just say their cyber crime rate is shooting up faster than my blood pressure during tech support phone calls.
The Trojan Tricks: SmokeLoader
Guilherme Venere, not wearing a Spartan helmet but probably should be, explains that Phobos variants are mostly spread by SmokeLoader, a backdoor Trojan. It’s sneaky, it’s sinister, and it’s about as welcome as an iPhone update that deletes all your favorites.
To put a cap on the horrific tech tale that is worse than a robot apocalypse movie, let’s summarize: The miscreants behind 8Base ransomware have learned some new tricks, utilizing a variant of Phobos ransomware in their destructive escapades. Cisco Talos, our eye in the spy world, has recorded a surge in such cyber manipulations. And then there’s the dark horse behind the chaos – SmokeLoader – described by our security champion Venere. Frightening stuff indeed. Let’s hope our antivirus is as strong as the coffee I need to read tech articles like these without flipping out!
Original Article: https://thehackernews.com/2023/11/8base-group-deploying-new-phobos.html