RedLine Stealer malware is the main source of credentials in two major marketplaces

Helga SmithOktubre 21, 2021Katapusan nga Gi-update: Oktubre 24, 2021
289 1 minuto nga pagbasa

According to Insikt Group analysts, the vast majority of stolen credentials sold on two large underground darknet marketplaces are collected using the RedLine Stealer malware.

RedLine Stealer was first discovered in March 2020. The malware is capable of extracting credentials from browsers, FTP clients, emails, instant messengers, and VPNs. Dugang pa, the malware can steal authentication cookies and card numbers stored in browsers, chat logs, local files and databases of cryptocurrency wallets.

Initially, this malware was sold on hack forums called REDGlade, but after the tool received positive reviews, pirated versions of RedLine Steale began to appear on the same forums.

As a result, by August of this year, this allowed malware to spread widely among cybercriminals, and they did not even have to pay to use the malware. Sa samang higayon, the researchers note that the paid version of RedLine Steale also found its customers.

In June 2021, Insikt Group discovered on Amigos Market and Russian Market regular publications of identical lots containing the same timestamps, data on the geographic location of affected machines and Internet providers, [obtained using] the same info-stealers.gisulat sa mga tigdukiduki.

RedLine Stealer malware

The Insikt Group expertsconclusions echo a similar KELA report dated February 2020. Then the researchers found that about 90% of the stolen credentials on the Genesis Market were obtained as a result of attacks by the AZORult info-stealer.

These findings suggest that underground marketplaces are highly fragmented and usually work with their own specific vendors. Likewise, legitimate marketplaces have their own preferences in choosing business partners.

Stolen corporate data such as user credentials regularly ends up on paste sites and dark web channels, allowing cybercriminals to purchase the data, and potentially use it to gain access to an organization’s network or systems.the researchers say and advise you to be stricter about data security.

Tugoti ko nga pahinumdoman ka nga kami usab ang nagsulat niana BluStealer malware steals cryptocurrency and spreads through phishing emails.

Mga tag
Helga SmithOktubre 21, 2021Katapusan nga Gi-update: Oktubre 24, 2021
289 1 minuto nga pagbasa

Helga Smith

Kanunay kong interesado sa siyensya sa kompyuter, ilabi na ang seguridad sa datos ug ang tema, nga gitawag karon "siyensya sa datos", sukad pa sa akong pagkabatan-on. Sa wala pa mosulod sa Virus Removal team isip Editor-in-chief, Nagtrabaho ko isip eksperto sa cybersecurity sa daghang kompanya, lakip ang usa sa mga kontraktor sa Amazon. Laing kasinatian: Naa koy pagtudlo sa mga unibersidad sa Arden ug Reading.

Pagbilin ug Tubag

Kini nga site naggamit sa Akismet aron makunhuran ang spam. Hibal-i kung giunsa ang pagproseso sa data sa imong komento.

Balik sa ibabaw nga buton