The Threat CodexJan 30
Can’t stop, won’t stop: TA584 innovates initial access
#TA584 #TsundereBot
https://www.proofpoint.com/us/blog/threat-insight/cant-stop-wont-stop-ta584-innovates-initial-access
Can’t stop, won’t stop: TA584 innovates initial access | Proofpoint US

Key findings  TA584 is one of the most prominent cybercriminal threat actors tracked by Proofpoint threat researchers.  In 2025, the actor demonstrated multiple

Proofpoint
The New OilJan 29

Initial access hackers switch to #TsundereBot for #ransomware attacks

https://www.bleepingcomputer.com/news/security/initial-access-hackers-switch-to-tsundere-bot-for-ransomware-attacks/

#cybersecurity

Initial access hackers switch to Tsundere Bot for ransomware attacks

A prolific initial access broker tracked as TA584 has been observed using the Tsundere Bot alongside XWorm remote access trojan to gain network access that could lead to ransomware attacks.

BleepingComputer