Microsoft says it is out of the question to replace routers compromised with Trickbot malware in Brazil and Latin America, hoping to squeeze an international hacking group. The Daily Beast reported the details of an article about the group, which is an ongoing target of the US Cyber Command, as well as information security companies such as Microsoft.
The Daily Beast reports that the hacking ring – also known as Trickbot and based in Russia, Belarus, Ukraine and Suriname – is a persistent online presence. The group uses compromised computers as a massive botnet and runs ransomware attacks and other illegal operations. Trickbot is known for hijacking routers and the internet of things that are often easy to infect without the owners being aware of it. Eliminating malicious software from routers can be particularly difficult for users, making personal replacement a surprisingly effective tactic.
Law enforcement agencies and companies have made some recent interventions in tackling Trickbot. The Department of Justice charged a woman who allegedly helped develop it last month, and Microsoft boasted in 2020 that they had cut 94 percent of the group̵
Trickbot has allegedly been behind attacks on hospitals, schools and authorities, stolen login information and locked computer systems to demand payment. Microsoft’s door-to-door replacement operation is only part of an attempt to stop it, but it’s an interesting ground – level tactic in the fight against malware.