Ex-Conti and FIN7 Actors Collaborate with New Domino Backdoor

[[correlate]]

Content source

https://securityintelligence.com/posts/ex-conti-fin7-actors-collaborate-new-domino-backdoor/

This blog was made possible through contributions from Christopher Caridi.
IBM Security X-Force recently discovered a new malware family we have called “Domino,” which we assess was created by developers associated with the cybercriminal group that X-Force tracks as ITG14, also known as FIN7. Former members of the Trickbot/Conti syndicate which X-Force tracks as ITG23 have been using Domino since at least late February 2023 to deliver either the Project Nemesis information stealer or more capable backdoors such as Cobalt Strike.

Ex-Conti and FIN7 Actors Collaborate with New Domino Backdoor

Unpack a newly discovered malware family dubbed “Domino” — and explore the intricate nature of cooperation among cybercriminal groups and their members. More from IBM Security X-Force.

securityintelligence.com