An up-and-coming cybercrime group, FusionCore, is likely composed of English-speaking European teenagers with distinct skills.
All about FusionCore
Malicious activities associated with a new and upcoming cybercrime group, dubbed FusionCore, have come to the notice of researchers. Active since November 2022, the threat actor group is specialized in offering Malware-as-a-Service (MaaS) and other hacking services.
The group has also created a separate ransomware affiliate program called AnthraXXXLocker.
The attackers had different Telegram channels to sell the malware until in November they joined hands to launch one portal. It is assumed that the threat actors are operating in Europe. So far, the known targets of FusionCore include Lindesberg Municipality in Sweden and an infosec company in Asia Pacific.
The team offers custom malware such as Typhon Reborn – inspired by another classic Greek serpent creature – ApolloRAT (tool Remote Access Trojan), Cryptonic (escape tool) and SarinLocker (a modern variant of ransomware).
The FusionCore group is set to further enhance its malware arsenal as it continues to come up with its own set of malware, especially new info-stealers.