<ul><li>A tainted version of the popular password manager KeePass is being distributed by cybercriminals, allowing them to steal data and deploy ransomware.</li><li>The malicious KeePass variant includes an infostealer and a Cobalt Strike beacon, enabling attackers to access saved passwords and deploy ransomware through network access.</li><li>The cybercriminals behind the attack are associated with an initial access broker group (IAB) known as UNC4696, linked to the ransomware operator Black Basta.</li><li>The fake password manager website, hosting the malicious version of KeePass, continues to serve malware to unsuspecting users through an extensive infrastructure.</li></ul>

Hackers are distributing a cracked password manager that steals data, deploys ransomware

Discover more