"FIN8 Cybercrime Group Resurges With Improved Hacking Tool"

FIN8, the financially-motivated criminal hacking group, has returned after a year-and-a-half hiatus with updated backdoor malware, known as BADHATCH. The gang typically attacks point-of-sale (PoS) systems to steal payment card data. According to researchers, the new and improved backdoor has capabilities such as screen capturing, proxy tunneling, and fileless execution. The backdoor is also now likely capable of stealing credentials. The gang has been using the new version of the BADHATCH backdoor in attacks primarily against companies in the retail, technology, chemical, and insurance industries. Research conducted by Bitdefender reveals that these attacks have hit organizations in the US, Canada, South Africa, Puerto Rico, Panama, and Italy. An earlier version of BADHATCH, observed by researchers at Gigamon and Trend Micro in 2019, enabled the delivery of other malware payloads such as ShellTea and PoSlurp to scrape for credit card data, delete files, and more. This article continues to discuss the return of the FIN8 cybercrime group with an updated version of the BADHATCH backdoor, the new capabilities of this backdoor, the earlier version of BADHATCH, and the history of the FIN8 group. 

CyberScoop reports "FIN8 Cybercrime Group Resurges With Improved Hacking Tool"