Security News Initial access hackers switch to Tsundere Bot for ransomware attacks BleepingComputer Daniel Bender 28 Jan 2026 A prolific initial access broker tracked as TA584 has been observed using the Tsundere Bot alongside XWorm remote access trojan to gain network access that could lead to ransomware attacks.
