BankInfoSecurity Compliance March 29, 2021 Compliance Twitter Part of the malicious domain used in recent Trickbot campaign (Source: Menlo Security) The Trickbot botnet appears to be making a comeback this month with a fresh campaign that is targeting insurance companies and legal firms in North America, according to an analysis published Friday by Menlo Security. While the phishing campaign that started Jan. 12 contains some of the hallmarks of a Trickbot campaign, Vinay Pidathala, director of security research at Menlo Security, says more analysis is needed to fully confirm that that botnet is active again and able to target new victims. "We are pretty confident that this is Trickbot," Pidathala says. "We haven't yet completed the full analysis on the dropped binary and the obfuscated JavaScript, which would increase our confidence, but we are pretty certain that it is Trickbot based on open source intelligence and the command-and-control infrastructure."