Corporate website contact forms used to spread BazarBackdoor malware

The stealthy BazarBackdoor malware is now being spread via website contact forms rather than typical phishing emails to evade detection by security software.

BazarBackdoor is a stealthy backdoor malware created by the TrickBot group and is now under development by the Conti ransomware operation. This malware provides threat actors remote access to an internal device that can be used as a launchpad for further lateral movement within a network.

The BazarBackdoor malware is usually spread through phishing emails that include malicious documents that download and install the malware.

Read more…
Source: Bleeping Computer