TrickBot info-stealing malware has updated its password grabber to target data from OpenSSH and OpenVPN applications. The latest TrickBot malware is especially proficient at stealing these sensitive credentials, says Venafi’s Kevin Bocek. TrickBot takes aim at Windows hosts and downloads different modules to perform various functions. In August it was seen targeting users of U.S. mobile carriers Verizon, Verizon, Sprint and Sprint in order to steal their PIN codes. Even just in 2019, the malware has switched up its targeting tactics and targeting.
Source: https://threatpost.com/trickbot-evolves-ssh-keys/150617/