TA579

Actor Type Criminal Group

TA579 is a financially motivated, cyber criminal group tracked by researchers at Proofpoint. The actor has reportedly been active since at least August 2021 and has been observed delivering BazaLoader, IcedID and Bumblebee malware.

Cyber Threat Graph Context

Explore how this Intrusion Set relates to the wider threat graph

TA579 Threat Reports

Report

Bumblebee Buzzes Back in Black

This report describes the return of the Bumblebee malware in February 2024. Bumblebee was first observed in 2022 but use appeared to stop after ...

View Source
Report

This isn't Optimus Prime's Bumblebee but it's Still Transforming

Since March 2022, Proofpoint observed a malicious email campaign delivering the Bumblebee downloader. Multiple groups have been observed utilising ...

View Source

References