skip to Main Content

Cybercrime, TeamTNT target organizations with Chimaera

TeamTNT target organizations with Chimaera. AT&T Alien Labs cybersecurity experts: The campaign exploits multiple shell/batch scripts, new open source tools, a cryptominer, and the group IRC bot

Chimaera is a new TeamTNT cybercrime campaign, targeting organizations worldwide. It has been discovered by AT&T Alien Labs cybersecurity experts. The gang exploits multiple shell/batch scripts, new open source tools, a cryptocurrency miner, the group IRC bot, and more. The targeted operating systems include Windows, different Linux distributions including Alpine (used for containers), AWS, Docker, and Kubernetes. Furthermore, as of August 30, 2021, many malware samples still have zero antivirus (AV) detections and others have low detection rates. The goal is stealing cloud systems credentials, using infected systems for cryptocurrency mining, and abusing victim’s machines to search and spread to other vulnerable systems.

Back To Top