Organized Global Cyber Criminals: Infoblox Warns IT Professionals about the Overlooked Mega-Threat

VexTrio, a largely secret threat actor, is leading a large-scale cybercriminal partnership that is delivering high volumes of malware and other malicious content to networks in APAC, Australia, New Zealand, and globally. These partnerships include underground affiliates like ClearFake and SocGholish. Infoblox’s Renee Burton recommends focusing on uncovering and eliminating middle layer players like VexTrio rather than endpoint malware or phishing threats. Burton suggests implementing protective Domain Name System measures to block malicious domains. VexTrio has been operating for over six years and is estimated to be worth trillions of dollars. It acts as a traffic distribution system, passing users on to other criminal entities for targeted attacks. The threat is not biased against targeting any specific country or region, making APAC and Australian internet users vulnerable. VexTrio primarily compromises vulnerable WordPress websites and redirects victims to malicious infrastructure. APAC IT professionals are advised to focus on targeting the middle man, implement protective DNS measures, and educate users about typical VexTrio-related threats.

Unlock your business potential with our expert guidance. Get in touch now!

fraud-detection-adobe.jpg

NCA Faces Backlash for Targeting LockBit Gang Leaders

AdobeStock_637240622.jpeg

Top 5 Free Accounting Software Picks for 2024

cyber-security-attack-virus-malware-Skorzewiak-adobe.jpg

Surge in Cyber Attacks, Including Ransomware, Observed Among ConnectWise Users

AdobeStock_263924576.jpeg

Top 6 Accounting Software Choices for Freelancers

post-office-building-old-street-clrcrmck.jpg

Disgraced Post Office CEO has CBE stripped by King Charles

tr_20240222-australian-cyber-security-pros-state-sponsored-attacks.jpg

State-Sponsored Cyber Attacks: A Concern for Cyber Security Professionals

remote-home-work-video-conference-adobe.png

Concerns Rise among Cybersecurity Experts Due to ‘Insignificant’ ConnectWise Vulnerabilities