Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Tor-enabled Bifrose variant used in targeted attack

Tor-enabled Bifrose variant used in targeted attack


Securityweek - (International) Trend Micro researchers identified a new variant of the Bifrose backdoor after it was used in an attack on an unnamed device manufacturer. The new variant uses the Tor network for command and control communications and can perform actions including downloading and uploading files, deleting content, and performing actions as the infected user.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:21:33