infostealers
Microsoft: Massive Malvertising Campaign Infects a Million Devices
A massive malvertising campaign that targeted individuals watching pirated videos on illegal streaming sites redirected them several times before landing them at GitHub repositories that hosted infostealers and other malware, according to ...
The Evolving Threat of Cookie Session Hijacking: How Infostealers Enable Advanced Cyberattacks
Cyberattacks are becoming increasingly sophisticated, with cookie session hijacking emerging as a significant threat. This technique allows attackers to bypass even advanced security measures like multi-factor authentication (MFA), enabling unauthorized access to ...
Leveraging Infostealers to Breach Companies: A Cybersecurity Intelligence Perspective
Infostealers are specialized malware designed to extract sensitive data from infected systems. They operate in the background, collecting login credentials, browser histories, and cookies, often without detection. Deployed through phishing emails or ...
Google Using Enhanced Encryption to Protect Cookies
Google is adding greater encryption capabilities to Chrome to better protect users from information-stealing malware, a move that comes after the company's controversial decision to once again delay getting rid of third-party ...
Unfurling Hemlock Tossing ‘Cluster Bombs’ of Malware
A threat group dubbed Unfurling Hemlock infects targeted campaign with a single compressed file that, once executed, launches a 'cluster bomb' of as many as 10 pieces of malware that include loaders, ...
Criminals are Easily Bypassing Passkeys – How Organizations Can Stay Safe
The problems with passwords drive the interest to adopt newer authentication methods, like passkeys, a type of passwordless technology ...
Ticketmaster is Tip of Iceberg: 165+ Snowflake Customers Hacked
Not our fault, says CISO: “UNC5537” breached at least 165 Snowflake instances, including Ticketmaster, LendingTree and, allegedly, Advance Auto Parts ...
CoralRaider Group Delivers Three Infostealers via CDN Cache
The latest cyberthreat campaign by the threat actors is targeting victims around the world, Cisco's Talos unit says ...
Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy
Have I been pwned? Yes, you probably have. Stop reusing passwords, already. Here’s what else you should do ...
Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old
What a Mickey Mouse operation: Infostealer scrotes having a field day with unpatched vulnerability ...
