Names | TomBerBil | |
Category | Malware | |
Type | Credential stealer | |
Description | (Kaspersky) In addition to the data that attackers can collect from hosts, they are also interested in obtaining access to all online services that target users have access to. For an adversary with high privileges in the system, one fairly easy way to do this is to decrypt browser data containing cookies and passwords that the user may have saved to autofill authentication forms. | |
Information | <https://securelist.com/toddycat-traffic-tunneling-data-extraction-tools/112443/> |
Last change to this tool card: 23 April 2024
Download this tool card in JSON format
Previous: TOITOIN
Next: Tomiris
Changed | Name | Country | Observed | ||
APT groups | |||||
ToddyCat | 2020-2021 |
1 group listed (1 APT, 0 other, 0 unknown)
Digital Service Security Center Follow us on |
Report incidents |
|
+66 (0)2-123-1227 | ||
[email protected] |