TA505 Archives

TA505 hacking crew spent much of 2019 trying to breach South Korea’s financial sector

The Financial Security Institute said Friday that many of the phishing emails included malicious Microsoft Excel documents.

Feb 28, 2020 By Jeff Stone

code, flaw, bug, vulnerability, bug bounty, trickbot — The TrickBot update should cause alarm for the financial sector. (Getty Images)

TA505 launches fresh attacks on financial organizations in Singapore, UAE and U.S.

Far from a one-trick pony, TA505’s recent documented activity hasn’t involved ransomware as the group has looked for other ways to make money.

Jul 3, 2019 By Sean Lyngaas

TA505 hackers thwarted at the door of a big financial org

“[T]he malware was signed mere hours prior to the attack – an indication of the operation’s deliberate timeline and nature," a Cybereason researcher said.

Apr 24, 2019 By Sean Lyngaas

Proofpoint: Hackers testing new reconnaissance malware on financial institutions

Proofpoint suggests that tRat is part of a trend of malware becoming more modular in order to provide attackers with more value in the long haul.

Nov 15, 2018 By Zaid Shoorbajee

Report: Modular ‘Marap’ malware campaign sets the table for bigger hacks

Proofpoint says the 'Marap' malware is linked to a known financially motivated threat actor group.

Aug 16, 2018 By Zaid Shoorbajee