FBI issues warning over Trickbot Trojan — what you need to know

News
By published

Nasty malware steals passwords, installs ransomware, spreads through networks

A woman opening email on a laptop that shows a big warning sign on its display.
(Image credit: Rawpixel.com/Shutterstock)

Beware email messages notifying you of traffic violations. They may be trying to infect your PC with the notorious Trickbot malware, warns the FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA).

"A sophisticated group of cybercrime actors is luring victims, via phishing emails, with a traffic infringement phishing scheme to download TrickBot," says the joint-agency advisory released earlier this week. 

The advisory describes Trickbot as "highly modular, multi-stage malware that provides its operators a full suite of tools to conduct a myriad of illegal cyber activities."

The malicious emails are part of a "spear phishing" campaign targeted selected people. You can expect the email messages to be tailored to the individuals receiving them, perhaps by addressing the recipients by name or even mentioning valid street addresses, makes of vehicle or license plates.

As many malware campaigns today target corporations or other large enterprises, the targeted individuals may be corporate executives whose emails would contain valuable information, or IT staffers who have wide access to a company network. Those individuals' personal email accounts may be targeted along with their workplace accounts.

To guard against Trickbot malware, make sure your Windows PC is running one of the best antivirus programs. Set up two-factor authentication on every online account that permits it. And don't save sensitive passwords in your browser; use one of the best password managers instead, which will be harder to break into.

Trickbot began life as a banking Trojan in 2016, but has evolved to become one of the most versatile strains of malware around. It can steal encryption keys, cookies, PIN codes and passwords; spread itself though a local network; mine cryptocurrency; and install other forms of malware, including the Ryuk and Conti ransomwares and the Emotet botnet malware.

See more Computing News
TOPICS
Paul Wagenseil
Paul Wagenseil

Paul Wagenseil is a senior editor at Tom's Guide focused on security and privacy. He has also been a dishwasher, fry cook, long-haul driver, code monkey and video editor. He's been rooting around in the information-security space for more than 15 years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom's Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown up in random TV news spots and even moderated a panel discussion at the CEDIA home-technology conference. You can follow his rants on Twitter at @snd_wagenseil.

Read more
An FBI agent typing on a computer
FBI issues warning to millions of Americans to avoid these websites that can steal your passwords and banking info
An image of a CAPTCHA
Hackers are using reCAPTCHA to trick users into infecting their own PCs with malware — how to stay safe
A hacker typing quickly on a keyboard
Hackers are posing as Apple and Google to infect Macs with malware — don’t fall for these fake browser updates
Green skull on smartphone screen.
This Android banking trojan steals passwords to take over your accounts — and all it takes is a single text message
Malware
Dangerous new password-stealing trojan automatically reinstalls itself on infected PCs
A hacker typing on a computer
FBI issues serious warning to iPhone and Android users — stop doing this ASAP
Latest in Online Security
23andME box
23andMe has declared bankruptcy — here's how to delete your data now
A magnifying glass on top of the Steam logo in a web browser
Valve just pulled a malicious game demo spreading info-stealing malware from Steam
A man filing his taxes electronically on a laptop
AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
MacBook Pro 2023
New Mac attack is tricking users into thinking their computer is locked — how to stay safe
Hacker using a stolen social security card
Your Social Security number is a literal gold mine for scammers and identity thieves — here’s how to keep it safe
An open lock depicting a data breach
Half a million teachers hit in major data breach with SSNs, financial data and more exposed — what to do now
Latest in News
Bill Gates in 2019
Bill Gates just predicted the death of every job thanks to AI — except for these three
NYTimes Connections
NYT Connections today hints and answers — Wednesday, March 26 (#654)
Gemini screenshot image
Google unveils Gemini 2.5 — claims AI breakthrough with enhanced reasoning and multimodal power
Samsung Galaxy Z Flip 6 review.
Samsung Galaxy Z Flip 7 design just teased in new cases leak — and the outer display is huge
Google Chrome
Chrome failed to install on Windows PCs, but Google has issued a fix — here's what happened
nyc spring day AI image
OpenAI just unveiled enhanced image generator within ChatGPT-4o — here's what you can do now
More about online security
23andME box

23andMe has declared bankruptcy — here's how to delete your data now

A man filing his taxes electronically on a laptop

AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
NYT Strands on a cellphone

NYT Strands today — hints, spangram and answers for game #388 (Wednesday, March 26 2025)
See more latest
Most Popular
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #388 (Wednesday, March 26 2025)
NYTimes Connections
NYT Connections today hints and answers — Wednesday, March 26 (#654)
Bill Gates in 2019
Bill Gates just predicted the death of every job thanks to AI — except for these three
Google Chrome
Chrome failed to install on Windows PCs, but Google has issued a fix — here's what happened
Gemini screenshot image
Google unveils Gemini 2.5 — claims AI breakthrough with enhanced reasoning and multimodal power
Samsung Galaxy Z Flip 6 review.
Samsung Galaxy Z Flip 7 design just teased in new cases leak — and the outer display is huge
nyc spring day AI image
OpenAI just unveiled enhanced image generator within ChatGPT-4o — here's what you can do now
WWDC logo on yellow background
Apple WWDC 2025 date set for June 9 — iOS 19, Apple Intelligence and more expected
Motorola Razr Plus 2024 cover display
Motorola Razr Plus (2025) leaked specs hint at bigger upgrades — here's what we know
(L-R) Yura Borisov as Igor, Mark Eydelshteyn as Vanya, Karren Karagulian as Toros and Mikey Madison as Anora "Ani" Mikheeva in "Anora"
Hulu top 10 movies — here's what you need to stream right now