Home » USB extortion Trojans: Fin7 hackers infect computers by mail

USB extortion Trojans: Fin7 hackers infect computers by mail

Blackmailing Trojans into a USB stick: a notorious group of hackers infecting computers by mail

Hackers wanted to get into the system via USB sticks in the mail (avatar)

Hackers wanted to get into the system via USB sticks in the mail (avatar)

© MAU / Getty Images

In order to infiltrate companies and authorities, hackers use sophisticated tools and complex vulnerabilities. Recently a particularly intimidating group tried, so to speak, through the front door – and the malicious code was sent by post.

For years, random victims were supposed to pay a few hundred euros in ransom, but extortion Trojans have long evolved into a multi-billion dollar business. Hacker groups are increasingly targeting profitable targets from businesses and authorities. US Federal Police FBI Now warns of a brazen scam attack.

It feels like it came from the last millennium: instead of the Internet and email, the attack this time came from the physical world – and fell on the offices of the attacked companies in one package. The USB disks in them had everything: they contained the “BadUSB” and “Bad Beetle USB” programs, which could be grabbed by computers by plugging in the stick.

Danger from the post office

According to investigators, the parcels arrived at various companies between August and November, including companies in TransportationInsurance, as well as the defense sector. In order to facilitate the introduction of sticks for the victims, the attackers used various camouflage tactics. The parcels allegedly sometimes came from Amazon, and sometimes from the Health Authority. Depending on the destination, recipients must find coupon cards on sticks or important data in the new Covid guidelines.

The actual effect, of course, was different. Once plugged in, the wand began passing commands to the computer and installing additional malware, according to investigators. To do this, they disguised themselves as a hypothetical keyboard that enters console commands. Even the lock on external data media has to be overturned. However, the FBI report did not reveal whether this was actually successful in the current attacks and what tangible results were for the companies involved.

Someone is holding a cell phone and a text message shows a phishing link.

Fin7: Notorious Internet Gangs

If you consider who was responsible for the attack, it is possible that the victims were threatened by evil. The FBI is naming the Fin7 hacker group as the prime suspect. The group, which by all indications comes from Eastern Europe, is famous. Hundreds of attacks on companies have been attributed to her. Attacks are always creative and sometimes very complex. And not just technically: Fin7 is said to have set up and created its own cover companies for some of the attacks. Attacks are specifically tailored to the target in question; One talks about “spear phishing” because the high-precision methods do not correspond to the old email network, but rather to target shooting with a bayonet. As early as 2018, a company highlighted the group’s sometimes clever and intimidating approach and described how hackers organize their billion-dollar business as a regular office job (Find out more here).

Remarkably, Fin7 is still around. The group, which has been active since at least 2015, was seen as shattered after its supposed leaders were arrested in 2018. One of them was sentenced to ten years in prison last year. But at the same time, the number of attacks attributed to her again increased rapidly.

Resources:sleeping computerAnd CNN

Read also:

Billions looted for North Korea: small details set off the largest bank robbery of all time

‘Fall from Underworld’: Signal chief finds hacking tools for governments and threatens retaliation

Yesterday’s James Bond: The Future of Espionage Was King of Electronic Armies

Leave a Reply

Your email address will not be published.