Approaching Stealers Devs (7 parts series)
To completely understand what’s going on in the info stealers market which has been growing in the last years…
Infostealer infection of an Orange employee results in BGP disruptions
Using the stolen account, the threat actor modified the AS number belonging to Orange’s IP address, resulting in major disruptions…
Key Learnings from Files Present on the C2 Server of an Infamous Infostealer Malware
This method can be applied to multiple other C2 servers that we come across on a daily basis to check for any security misconfigurations…
From LNK Payload to Infostealer Source Code
A ZIP/LNK payload and, with some luck, we will end up identifying the infostealer that is being dropped and its source code…
Infostealer – Trends and how to detect them before it’s too late
Infostealers are a type of malware designed to steal information from the victim system in order to send it to the attacker…
Mysterious hacker strikes Iran with major cyberattacks against industry leading companies
A hacker who goes by the username “irleaks” posted a thread in which they attempt to sell over 160,000,000 records of Iranians…
Unmasking RedLine Stealer
RedLine Stealer is a dangerous type of malware that can cause serious harm to both individuals and organizations…
Evilginx Phishing Proxy
Learn about the threat of free Adversary-in-the-Middle (AiTM) phishing proxy Evilginx and how to mitigate it…
New Version Of Meduza Stealer Released In Dark Web
Resecurity’s HUNTER (HUMINT) spotted the author of perspective password stealer Medusa has released a new version…
Big Game Hunting — Vidar Server Infrastructure in Germany
Vidar steals information including login credentials, browser history, cookies and other data and sends it all back to the operator…
Compromising Google Accounts: Malwares Exploiting Undocumented OAuth2 Functionality for session hijacking.
A detailed blog on Analysis of the Global Malware Trend: Exploiting Undocumented OAuth2 Functionality to Regenerate Google Service Cookies Regardless of IP or Password Reset…
Epsilon infostealer spread via fan-made indie game expansion.
Installation of Epsilon infostealer enabled exfiltration of browser-stored data, including passwords, credit cards, and cookies and more…
