skip to Main Content

Cybercrime, Rig Exploit Kit actors swapped Raccoon Steeler for Dridex

Rig Exploit Kit actors swapped Raccoon Steeler for Dridex. Bitdefender cybersecurity experts: The campaign changed malware in February when one of the lead developers was killed in the Russian invasion of Ukraine

Rig Exploit Kit cybercrime actors swapped Raccoon Steeler for Dridex. It has been discovered by Bitdefender cybersecurity experts. In January 2022, the researchers the started tracking a RIG Exploit Kit campaign pushing Raccoon Stealer – a credential-stealing Trojan advertised and sold on underground forums as malware-as-a-service for $ 200 a month. The campaign has taken an unexpected turn in February when the malware came to a temporary halt as one of the lead developers was killed in the Russian invasion of Ukraine. Despite the stealer no longer being operational anymore, threat actors have rapidly adapted by replacing Raccoon malware with Dridex to make the most of the ongoing campaign. By design, in fatcs, RIG Exploit Kit allows for rapid substitution of payloads in case of detection or compromise, which helps cyber-criminal groups recover from disruption or environmental changes.

Back To Top