infostealer

Open VSX Downplays Impact From GlassWorm Campaign

GlassWorm, infostealer, Malware, Malware & Threats, Open VSX /

Open VSX Downplays Impact From GlassWorm Campaign 2025-10-31 at 19:32 By Ionut Arghire Open VSX fully contained the GlassWorm attacks and says it was not a self-replicating worm in the traditional sense. The post Open VSX Downplays Impact From GlassWorm Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source […]

React to this headline:

Loading spinner

Open VSX Downplays Impact From GlassWorm Campaign Read More »

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times

infostealer, Malware, Malware & Threats, NPM /

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times 2025-10-30 at 12:59 By Ionut Arghire The packages deployed malicious code harvesting system information, credentials, tokens, API keys, and other sensitive information. The post 136 NPM Packages Delivering Infostealers Downloaded 100,000 Times appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times Read More »

Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums

credentials, Data Breaches, Data leak, infostealer, Malware & Threats, password /

Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums 2025-10-28 at 15:11 By Ionut Arghire The email addresses were pulled from various sources and 16.4 million of them were not present in previous data breaches. The post Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums Read More »

Lumma Stealer Activity Drops After Doxxing

disrupted, infostealer, Lumma Stealer, Malware & Threats /

Lumma Stealer Activity Drops After Doxxing 2025-10-20 at 16:07 By Ionut Arghire The identities of alleged core members of the Lumma Stealer group were exposed in an underground doxxing campaign. The post Lumma Stealer Activity Drops After Doxxing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Lumma Stealer Activity Drops After Doxxing Read More »

Widespread Infostealer Campaign Targeting macOS Users

AMOS, Featured, infostealer, macOS malware, Malware & Threats /

Widespread Infostealer Campaign Targeting macOS Users 2025-09-22 at 13:01 By Ionut Arghire Threat actors rely on malicious GitHub repositories to infect LastPass’s macOS users with the Atomic infostealer. The post Widespread Infostealer Campaign Targeting macOS Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Widespread Infostealer Campaign Targeting macOS Users Read More »

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime

infostealer, Malware, Malware & Threats, Uncategorized /

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime 2025-08-27 at 15:46 By Kevin Townsend Competition among malware-as-a-service developers has transformed infostealers into refined, accessible tools for cybercriminals worldwide. The post Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Infostealers: The Silent Smash-and-Grab Driving Modern Cybercrime Read More »

SonicWall Warns of Trojanized NetExtender Stealing User Information

infostealer, Malware, Malware & Threats, NetExtender, SonicWall, trojanized /

SonicWall Warns of Trojanized NetExtender Stealing User Information 2025-06-25 at 14:33 By Ionut Arghire SonicWall says a modified version of the legitimate NetExtender application contains information-stealing code. The post SonicWall Warns of Trojanized NetExtender Stealing User Information appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

SonicWall Warns of Trojanized NetExtender Stealing User Information Read More »

Interpol Targets Infostealers: 20,000 IPs Taken Down, 32 Arrested, 216,000 Victims Notified

arrested, cybercrime, Featured, infostealer, Interpol, law enforcement, Malware, takedown, Tracking & Law Enforcement /

Interpol Targets Infostealers: 20,000 IPs Taken Down, 32 Arrested, 216,000 Victims Notified 2025-06-12 at 11:15 By Eduard Kovacs Interpol has announced a crackdown on infostealer malware in Asia as part of an effort called Operation Secure. The post Interpol Targets Infostealers: 20,000 IPs Taken Down, 32 Arrested, 216,000 Victims Notified appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Interpol Targets Infostealers: 20,000 IPs Taken Down, 32 Arrested, 216,000 Victims Notified Read More »

Microsoft Sinkholes Domains, Disrupts Notorious ‘Lumma Stealer’ Malware Operation

infostealer, Justice Department, Lumma Stealer, Malware & Threats, Microsoft, Ransomware, Tracking & Law Enforcement /

Microsoft Sinkholes Domains, Disrupts Notorious ‘Lumma Stealer’ Malware Operation 2025-05-21 at 21:48 By Ryan Naraine Redmond’s threat hunters found 394,000 Windows systems talking to Lumma controllers, a victim pool included global manufacturers.  The post Microsoft Sinkholes Domains, Disrupts Notorious ‘Lumma Stealer’ Malware Operation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Microsoft Sinkholes Domains, Disrupts Notorious ‘Lumma Stealer’ Malware Operation Read More »

BTMOB RAT: Newly Discovered Android Malware Spreading via Phishing Sites

infostealer, Malware, phishing /

BTMOB RAT: Newly Discovered Android Malware Spreading via Phishing Sites 2025-02-13 at 06:19 By rohansinhacyblecom Key Takeaways Overview On January 31, 2025, Cyble Research and Intelligence Labs (CRIL) identified a sample lnat-tv-pro.apk (13341c5171c34d846f6d0859e8c45d8a898eb332da41ab62bcae7519368d2248) being distributed via a phishing site “hxxps://tvipguncelpro[.]com/” impersonating iNat TV – online streaming platform from Turkey posing a serious threat to unsuspecting

React to this headline:

Loading spinner

BTMOB RAT: Newly Discovered Android Malware Spreading via Phishing Sites Read More »

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials

data breach, Data Breaches, infostealer, Malware, OpenAI /

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials 2025-02-11 at 13:40 By Eduard Kovacs A hacker recently offered to sell 20 million OpenAI credentials, but the data likely comes from information stealers, not the AI firm’s systems. The post OpenAI Finds No Evidence of Breach After Hacker Offers to

React to this headline:

Loading spinner

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials Read More »

Strela Stealer targets Central and Southwestern Europe through Stealthy Execution via WebDAV

infostealer, Malware /

Strela Stealer targets Central and Southwestern Europe through Stealthy Execution via WebDAV 2024-10-30 at 15:05 By rohansinhacyblecom Key Takeaways Executive Summary Strela Stealer, first identified by DCSO in late 2022, is a type of information-stealing malware primarily designed to exfiltrate email account credentials from widely used email clients, including Microsoft Outlook and Mozilla Thunderbird. This malware

React to this headline:

Loading spinner

Strela Stealer targets Central and Southwestern Europe through Stealthy Execution via WebDAV Read More »

FatalRAT’s New Prey: Cryptocurrency Users in the Crosshairs

Cryptocurrency, infostealer /

FatalRAT’s New Prey: Cryptocurrency Users in the Crosshairs 2024-04-11 at 12:46 By neetha871ad236bd Key Takeaways Overview CRIL has recently uncovered a sophisticated phishing campaign that specifically targets cryptocurrency users, with a notable emphasis on users of the Exodus platform. In this intricate scheme, threat actors (TAs) have employed a deceptive website meticulously designed to mimic

React to this headline:

Loading spinner

FatalRAT’s New Prey: Cryptocurrency Users in the Crosshairs Read More »

Uncovering Atomic Stealer (AMOS) Strikes and the Rise of Dead Cookies Restoration

infostealer, Malware, phishing /

Uncovering Atomic Stealer (AMOS) Strikes and the Rise of Dead Cookies Restoration 2024-01-25 at 15:01 By neetha871ad236bd CRIL analyzes an ongoing phishing campaign spreading an updated version of Atomic Stealer targeting Mac users. The post Uncovering Atomic Stealer (AMOS) Strikes and the Rise of Dead Cookies Restoration appeared first on Cyble. The post Uncovering Atomic

React to this headline:

Loading spinner

Uncovering Atomic Stealer (AMOS) Strikes and the Rise of Dead Cookies Restoration Read More »

Protected: Uncovering Atomic Stealer (AMOS) Strikes and the Cookie Resurgence Trend 

infostealer, Malware, phishing /

Protected: Uncovering Atomic Stealer (AMOS) Strikes and the Cookie Resurgence Trend  2024-01-25 at 13:16 By neetha871ad236bd There is no excerpt because this is a protected post. The post Protected: Uncovering Atomic Stealer (AMOS) Strikes and the Cookie Resurgence Trend  appeared first on Cyble. The post Protected: Uncovering Atomic Stealer (AMOS) Strikes and the Cookie Resurgence

React to this headline:

Loading spinner

Protected: Uncovering Atomic Stealer (AMOS) Strikes and the Cookie Resurgence Trend  Read More »

Cyber Espionage Attack on the Indian Air Force: Go-Based Infostealer Exploits Slack for Data Theft

infostealer, Malware /

Cyber Espionage Attack on the Indian Air Force: Go-Based Infostealer Exploits Slack for Data Theft 2024-01-17 at 12:01 By cybleinc Cyber Espionage Attack on the Indian Air Force: Go-Based Infostealer Exploits Slack for Data Theft Key Takeaways Cyble Research and Intelligence Labs (CRIL) identified a Go Stealer variant potentially targeting the Indian Air Force. The

React to this headline:

Loading spinner

Cyber Espionage Attack on the Indian Air Force: Go-Based Infostealer Exploits Slack for Data Theft Read More »

Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess

Golang, infostealer, Malware, qBit Stealer, RaaS, Ransomware-as-a-Service /

Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess 2023-12-28 at 12:47 By cybleinc CRIL investigates the source code of qBit – which has recently appeared on a cybercrime forum – delving into its exfiltration capabilities. The post Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess appeared first on Cyble. This article is an

React to this headline:

Loading spinner

Decoding qBit Stealer’s Source Release and Data Exfiltration Prowess Read More »

New Persian Remote World Selling  a Suite of Malicious Tools

All, infostealer, Keylogger, Malware, Persian Loader, Persian RAT, Persian Remote, Persian X Loader, trojan /

New Persian Remote World Selling  a Suite of Malicious Tools 23/11/2023 at 11:46 By cybleinc CRIL analyzes a new website – Persian Remote World – selling malicious software, including RATs and Malware loaders, for monetary gain. The post New Persian Remote World Selling  a Suite of Malicious Tools appeared first on Cyble. This article is

React to this headline:

Loading spinner

New Persian Remote World Selling  a Suite of Malicious Tools Read More »

New Java-Based Rude Stealer abuses DirectX Diagnostic Tool

Discord, infostealer, Java, Malware, Rude Stealer, Steam, Telegram, Windows /

New Java-Based Rude Stealer abuses DirectX Diagnostic Tool 20/11/2023 at 14:31 By cybleinc CRIL analyzes Rude Stealer – a Java-based stealer capable of exfiltrating a wide range of information from infected systems. The post New Java-Based Rude Stealer abuses DirectX Diagnostic Tool appeared first on Cyble. This article is an excerpt from Cyble View Original

React to this headline:

Loading spinner

New Java-Based Rude Stealer abuses DirectX Diagnostic Tool Read More »

Fileless Pure Clipper Malware: Italian users in the crosshairs

Alibaba2044, Bitcoin, Clipper, Cryptowallets, Ethereum, infostealer, Italy, Malware, phishing, Pure Clipper, PureLoader, PureLogs /

Fileless Pure Clipper Malware: Italian users in the crosshairs 18/10/2023 at 15:18 By cybleinc Key Takeaways Overview In a recent investigation, the CRIL found an operation orchestrated by a Threat Actor (TA) through a deceptive phishing site that imitated the official Tor Project website. The TA was spreading Pure Clipper in this operation. Clipper is

React to this headline:

Loading spinner

Fileless Pure Clipper Malware: Italian users in the crosshairs Read More »

Scroll to Top