Conti Ransomware Operators Using ‘BazarCall’ Style Attack as an Initial Vector

In the context of phishing attacks, a BazarCall style attack is a form of targeted phishing that uses a call-back methodology in order to trick the user.

For the first time, this emerged to be marketed in 2020/2021 as a tool of Ryuk which was later rebranded under the name Conti.

[{"selector":"#anim-11f62b25-0688-4df6-8eba-87541d84a387 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(25.809972538072685%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.14,.34,.47,.9)","fill":"forwards"}]

The tool has been ascertained to be an effective and adaptable tool for an entire line of criminals and has proven to be useful.

[{"selector":"#anim-46272b39-8bf1-4cf6-befe-d341e7c8eff4 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(16.352003824205266%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.14,.34,.47,.9)","fill":"forwards"}]

They can be travelling tens to hundreds of thousands of kilometres per hour and when they hit the atmosphere.

[{"selector":"#anim-0c68c247-96fc-4d2e-87f8-1912dd7bdfa7 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(22.225489855912425%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.14,.34,.47,.9)","fill":"forwards"}]

Increasingly, callback phishing tactics are used by scammers to trick their victims in order to gain access to their personal information.

[{"selector":"#anim-42646458-14fc-452f-997d-44ffe862bec1 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(-2.809685041457584%, 0%) scale(1.5)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}]

And not only that even the current threat landscape has been completely transformed by callback phishing tactics.

[{"selector":"#anim-cd7f89d7-3039-4a81-a56e-458f97252255 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(0%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.14,.34,.47,.9)","fill":"forwards"}]

According to the report, So far, three threat groups that are autonomous have devised their own targeted phishing tactics,

[{"selector":"#anim-080b4d96-5a67-4d86-bc37-4614984feed8 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(27.2382972184395%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.14,.34,.47,.9)","fill":"forwards"}]

here they are mentioned below:- Silent Ransom Quantum Roy/Zeon

[{"selector":"#anim-063a01d8-ae12-4621-9f5f-a29ddbaae85d [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(31.515217992294954%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.14,.34,.47,.9)","fill":"forwards"}]