Home > List all groups > List all tools > List all groups using tool TomBerBil

Threat Group Cards: A Threat Actor Encyclopedia

Names	TomBerBil
Category	Malware
Type	Credential stealer
Description	(Kaspersky) In addition to the data that attackers can collect from hosts, they are also interested in obtaining access to all online services that target users have access to. For an adversary with high privileges in the system, one fairly easy way to do this is to decrypt browser data containing cookies and passwords that the user may have saved to autofill authentication forms.
Information	<https://securelist.com/toddycat-traffic-tunneling-data-extraction-tools/112443/>

Last change to this tool card: 23 April 2024

Download this tool card in JSON format

1 group listed (1 APT, 0 other, 0 unknown)

APT groups