"Modular Malware Boolka's BMANAGER Trojan Exposed"

Group-IB researchers have detailed the operations of a threat actor named "Boolka." Their activities include launching sophisticated malware and web attacks. The group has been exploiting vulnerabilities through SQL injection attacks on websites since 2022. The injected scripts intercept user inputs to steal data. In January 2024, Group-IB analysts found a Boolka-linked landing page that distributed the "BMANAGER" modular Trojan. This discovery revealed Boolka's malware delivery platform, which leverages the BeEF framework. This article continues to discuss findings regarding Boolka's operations.

Infosecurity Magazine reports "Modular Malware Boolka's BMANAGER Trojan Exposed"

Submitted by grigby1
 

Submitted by Gregory Rigby on