Boolka Group Targets Websites with BMANAGER Malware Through SQL Injections

Threat: Malware

Threat Actor Name: Boolka

Targeted Region: Global

Targeted Sector: Technology & IT

Criticality: High

EXECUTIVE SUMMARY

A new threat actor named Boolka has been identified, utilizing the infrastructure to deploy a modular trojan called BMANAGER. The discovery of this infrastructure revealed a landing page designed to distribute BMANAGER, serving as a test for a malware delivery platform based on the BeEF framework. Boolka has been active conducting opportunistic SQL injection attacks to infect websites with malicious JavaScript capable of intercepting user data.

Recent Advisories

goshs Improper Limitation of a Pathname to a Restricted Directory

April 3, 2026

ONNX Vulnerability Susceptible to Attribute Alteration and Memory Corruption

April 3, 2026

SillyTavern Vulnerabilities in Delete and Export Endpoints

April 3, 2026

Critical Stored XSS Vulnerability in CI4MS User Profiles

April 3, 2026

Boolka Group Targets Websites with BMANAGER Malware Through SQL Injections

Enter Your Email to see Lab Reports

Recent Advisories

Report an Incident