A fast-evolving informationâstealing malware dubbed âTorg Grabberâ that has shifted from simple Telegramâbased exfiltration to a hardened, encrypted REST API commandâandâcontrol (C2) channel fronted by Cloudflare. The operation surfaced when a 747 KB 64âbit sample initially tagged as Vidar was found to be fundamentally different from known Vidar builds, exposing an internal debug string âgrabber […]
The post Torg Grabber Malware Shifts from Telegram Exfiltration to Encrypted REST API for C2 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.