A configurable, malicious Traffic Direction System (TDS) has been enabling widespread malware attacks. The “Prometheus” TDS can direct malware at a variety of potential victims, boosting the potential size and impact of attacks. Several high-profile trojan operators have reportedly used Prometheus to conduct malware attacks on a large scale. As a relatively cheap cybercriminal service―one that is readily available on a cybercriminal forum―Prometheus is also likely enabling many other threat actors, including those without technical sophistication. Considering the similar offerings available online, there seems to be a growing market for platforms that help malware operators expand the impact of their attacks. This TDS is just one example of the growing professionalization of cybercriminal services.

×
Want these
Threat Intelligence reports sent straight to your inbox?
Subscribe below!
Thank you!
Error - something went wrong!
Most Recent Flipbooks
Weekly Intelligence Summary 21 October
Main story: Ransom Cartel and REvil: Partners in cybercrime?
Weekly Intelligence Summary 14 Oct
Main story: Hacktivists fan flames of Iranian anti-regime protests
Weekly Intelligence Summary 07 Oct
Main story: ProxyNotShell spells déjà vu for MS Exchange Server defenders
Weekly Intelligence Summary 30 Sept
Main story: Rogue ex-developer leaks LockBit 3.0 builder
Weekly Intelligence Summary 23 Sept
Main story: Uber compromised by Lapsus$'s resurgence
Weekly Intelligence Summary 16 Sept
Main story: Cyber attacks shock the Italian energy sector
Weekly Intelligence Summary 09 Sept
Main story: Back to school for students and ransomware groups