Attackers are abusing the Basecamp project management tool to launch phishing campaigns designed to distribute malware or steal credentials. Threat groups are distributing the BazarLoader backdoor Trojan using public Basecamp download links, warned the MalwareHunterTeam.
- Basecamp is a web-based project management tool that includes to-do lists, milestone management, messaging, file sharing, and time tracking.
- BazarLoader deploys Cobalt Strike beacons that enable attackers to access a compromised network and deploy Ryuk ransomware.
- Ryuk ransomware attackers were behind the recent attack on Universal Health Services, which shut down some healthcare systems for more than a week.