home.social
Sign in Create account

#trustconnect — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #trustconnect, aggregated by home.social.

  1. RedPacket Security @[email protected] ·

    Signed malware impersonating workplace apps deploys RMM backdoors - redpacketsecurity.com/signed-m

    #threatintel
    #phishing
    #signed-malware
    #TrustConnect Software
    #RMM-backdoor
    #ScreenConnect-backdoor

    #threatintel #phishing #signed #trustconnect #rmm #screenconnect
  2. RedPacket Security @[email protected] ·

    Signed malware impersonating workplace apps deploys RMM backdoors - redpacketsecurity.com/signed-m

    #threatintel
    #phishing
    #signed-malware
    #TrustConnect Software
    #RMM-backdoor
    #ScreenConnect-backdoor

    #threatintel #phishing #signed #trustconnect #rmm #screenconnect
  3. RedPacket Security @[email protected] ·

    Signed malware impersonating workplace apps deploys RMM backdoors - redpacketsecurity.com/signed-m

    #threatintel
    #phishing
    #signed-malware
    #TrustConnect Software
    #RMM-backdoor
    #ScreenConnect-backdoor

    #threatintel #phishing #signed #trustconnect #rmm #screenconnect
  4. RedPacket Security @[email protected] ·

    Signed malware impersonating workplace apps deploys RMM backdoors - redpacketsecurity.com/signed-m

    #threatintel
    #phishing
    #signed-malware
    #TrustConnect Software
    #RMM-backdoor
    #ScreenConnect-backdoor

    #screenconnect #rmm #trustconnect #signed #phishing #threatintel
  5. RedPacket Security @[email protected] ·

    Signed malware impersonating workplace apps deploys RMM backdoors - redpacketsecurity.com/signed-m

    #threatintel
    #phishing
    #signed-malware
    #TrustConnect Software
    #RMM-backdoor
    #ScreenConnect-backdoor

    #threatintel #phishing #signed #trustconnect #rmm #screenconnect
  6. abuse.ch :verified: @[email protected] ·

    Proofpoint recently identified a fake RMM (Remote Monitoring and Management Tool) called #TrustConnect and #DocConnect🔎💻 Pivoting the threat in our collection reveals that the threat actors spread the same malware under additional names, including:

    ➡️SoftConnect
    ➡️HardConnect
    ➡️AxisControl

    It also seems that the threat actor was previously playing around with the legitimate RMM #ScreenConnect (aka ConnectWise) before switching to their own fake RMM 🛠️

    What also stands out: the majority of the botnet C2s were hosted at Contabo GmbH 🇩🇪

    We track the threat on our platforms as #FakeRMM ⤵️

    IOCs on ThreatFox:
    🦊 threatfox.abuse.ch/browse/tag/

    Malware samples:
    📄 bazaar.abuse.ch/browse/tag/Fak

    #trustconnect #docconnect #screenconnect #fakermm