Hackers use web-based project management BaseCamp to attack networks

Hackers use web-based project management BaseCamp to attack networks

It’s never a dull moment when it comes to our Cybersecurity and Digital Privacy investing theme and the corresponding index given that hackers are constantly looking for vulnerabilities and other gaps to exploit. According to a new report, phishing campaigns that distribute malware or steal your login credentials have started to use Basecamp, a web-based project management solution that allows people to collaborate, chat with each other, create documents, and share files. It appears once again the ongoing game of one upmanship between cyber attackers and cyber defenders is poised to continue as the way we live, work and play become increasingly digital.

Security researchers MalwareHunterTeam and James have found that threat actors are distributing BazarLoader executables using public Basecamp download links.

BazarLoader is a stealthy backdoor Trojan from the TrickBot gang used against high-value targets to compromise their networks. Once installed, BazarLoader will deploy Cobalt Strike beacons that allow threat actors to access the network and ultimately deploy the Ryuk ransomware.

By abusing safe services such as Basecamp to host malicious files and phishing pages, users can be lulled into a false sense of trust and open files that they normally would not.

Furthermore, by using Basecamp URLs, threat actors can create carefully constructed and targeted campaigns to infiltrate a network as users may feel that the file is from their Basecamp project.

Source: Hackers now abuse BaseCamp for free malware hosting

About the Author

Chris Versace, Chief Investment Officer
I'm the Chief Investment Officer of Tematica Research and editor of Tematica Investing newsletter. All of that capitalizes on my near 20 years in the investment industry, nearly all of it breaking down industries and recommending stocks. In that time, I've been ranked an All Star Analyst by Zacks Investment Research and my efforts in analyzing industries, companies and equities have been recognized by both Institutional Investor and Thomson Reuters’ StarMine Monitor. In my travels, I've covered cyclicals, tech and more, which gives me a different vantage point, one that uses not only an ecosystem or food chain perspective, but one that also examines demographics, economics, psychographics and more when formulating my investment views. The question I most often get is "Are you related to…."

Comments are closed.