BleepingComputer
Lumma malware can allegedly restore expired Google auth cookies.
Session cookies are specific web cookies used to allow a browsing session to log in to a website’s services automatically…
November 22, 2023
Session cookies are specific web cookies used to allow a browsing session to log in to a website’s services automatically…
The Lumma information-stealing malware is now using an interesting tactic to evade detection by security software…
Recent weeks have seen a number of macOS-specific infostealers appear for sale in crimeware forums…
What causes a man to wake up one day and say, “I’m going to build my own malware and go sell it to cybercriminals on the dark web”?
Rapid7 routinely conducts research into the wide range of techniques that threat actors use to conduct malicious activity…
Recently, Rapid7 observed the Fake Browser Update lure tricking users into executing malicious binaries…
This blog post aims at presenting the life cycle of logs, the cybercrime marketplaces dedicated to logs and the noticeable schemes…
This year has seen an explosion of infostealers targeting the macOS platform. Throughout 2023…
Using Hudson Rock’s cybercrime intelligence database, which consists of over 14,500,000 computers infected by info-stealing malware…
Threat actor “La_Citrix” is known for hacking companies and selling access to their citrix/vpn/RDP servers or otherwise for selling info-stealer logs from computer infections…
In this last part of a three part series, our teams summarize the major takeaways from our joint research and provide you with some actionable recommendations…
In this second of a three blog post series, Cyrus and Hudson Rock reveal how the info-stealer threat looks from the hacker’s point of view…
By [Alon Gal] | April 2025 Infostealers have become a cornerstone of cybercrime in 2025, infiltrating systems to steal credentials and sensitive data, enabling devastating follow-on
By [Alon Gal] | April 2025 The HellCat ransomware group has once again demonstrated their relentless focus on exploiting Jira credentials stolen through infostealer malware, targeting
By [Alon Gal] | April 2025 Just days after reporting on the Samsung Tickets data breach, another massive leak has surfaced, this time targeting Royal Mail
Stay informed with the latest insights in our Infostealers weekly report. Explore key findings, trends and data on info-stealing activities.
