HelloBridge trojan poses as Heartbleed detection tool

Share this article:
With the Heartbleed bug grabbing headlines around the world, attackers are leveraging the news for their own malicious tactics.

Researchers have uncovered a new attack campaign that lures users into downloading a supposed Heartbleed vulnerability detection tool that infects computers with malware.

Dubbed the HelloBridge backdoor trojan, the malware is able to execute commands from it's command and control server that include downloading additional malicious files and exfiltrating data, according to a blog post by researchers at Dell SecureWorks Counter Threat Unit.

Samples of the trojan were first collected on April 9. At the time, SecureWorks' VirusTotal analysis service indicated that only three out of 51 anti-virus (AV) vendors detected the malware. By April 17 up to 27 AV vendors detected it.

According to researchers, this is a recent threat tactic that has predominately been used in Southeast Asia.
Share this article:

Sign up to our newsletters

More in News

Russian hacker Seleznev ordered to remain in custody

Roman Seleznev's attorneys requested that the hacker be released on bond, but their pleas were rejected this past week.

Bug in iOS Instagram app fixed, impacts Facebook accounts

The vulnerability comes into play when Instagram users search for Facebook friends to "follow."

AP denied security docs on HealthCare.gov, a risk to private information

AP denied security docs on HealthCare.gov, a risk ...

The Associated Press was denied a request made under the Freedom of Information Act for documents that contain security information on HealthCare.gov.