Raspberry Robin Worm Targets Telcos & Governments

  /     /     /  
Publicated : 23/11/2024   Category : security


Raspberry Robin Worm Targets Telcos & Governments


With 10 layers of obfuscation and fake payloads, the Raspberry Robin worm is nesting its way deep into organizations.



Its likely the group behind the worm called Raspberry Robin is just testing the waters — launching attacks against telecommunications companies and governments across Australia, Europe, and Latin America to see how far their malware can spread — for now.
Researchers at Trend Micro have been tracking Raspberry Robin since September and are warning the worm is notable for its 10 layers of obfuscation and its ability to deploy a fake payload to throw off detection efforts.
Raspberry Robin infected thousands of endpoints
in October. Both Octobers endpoint attacks and the latest targeting of governments and the telecom sector relied on a malicious USB for initial infection.
Our initial analysis of the malware, which compromised a number of organizations toward the end of September, showed that while the main malware routine contains both the real and fake payloads, it loads the fake payload once it detects sandboxing tools to evade security and analytics tools from detecting and studying the malwares real routine,
Trend Micro reported
, adding the team will continue to track the malwares activities.

Last News

▸ Hack Your Hotel Room ◂
Discovered: 23/12/2024
Category: security

▸ Website hacks happened during World Cup final. ◂
Discovered: 23/12/2024
Category: security

▸ Criminal Possession of Government-Grade Stealth Malware ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Raspberry Robin Worm Targets Telcos & Governments