-
All things infostealers. Week 44, 2024
A brief look at all things infostealers for the week 44, 2024 (28.10.2024–03.11.2024). Oh boy, what a crazy start of the week! Yes, you guessed it right, I mean the dropping the bombshell with the Operation Magnus. On Monday, the Dutch National Police, alongside with a bunch of other LEAs, announced taking over the servers…
-
All things infostealers. Week 43, 2024
A brief look at all things infostealers for the week 43, 2024 (21.10.2024–27.10.2024). My-my, during week 43 were observed a number of updates to several infostealers. As usual, added few articles and news pieces that were interesting. Specially the “Braodo Stealer” one, haven’t heard about such stealer before. XFiles Update Note: The update posts are…
-
All things infostealers. Week 42, 2024
A brief look at all things infostealers for the week 42, 2024 (14.10.2024–20.10.2024). Now, for the week 42 I don’t really have many updates. Probably, I need to widen my net and look beyond XSS forum. Anyway, there are only 2 updates from the XFiles Stealer and 2 pieces of news. Oh, I did notice…
-
All things infostealers. Week 41, 2024
A brief look at all things infostealers for the week 41, 2024 (07.10.2024–13.10.2024). Includes an update on XFiles, Lumma, StealC and Vidar stealers. And a news article on Ukrainian national pleading guilty to his involvement in the Raccoon Stealer. XFiles Update Note: The update post is copy-pasted as is from the XSS forum Update 3.11.0 08.10.2024**A…
-
All things infostealers. Week 40, 2024
A brief look at all things infostealers for the week 40, 2024 (30.09.2024–06.10.2024). Includes an update on Lumar and XFiles stealers, source code sale of a stealer, emergence of a new logs market, and finally, a news article on AI ‘Nudify’ site, which lead to RedLine infections. XFiles Update 3.10.0 Note: The update post is…
-
0debug’s Stealer
Audi, a user on the XSS forum made a post about selling source code of an infostealer. The user has recently joined the forum, on 28 August 2024 to be more specific, and has only 2 posts so far. The reason for selling the source is simple. The user was contracted to code a stealer…
-
All things infostealers. Week 39, 2024
A brief look at all things infostealers for the week 39, 2024 (23.09.2024–29.09.2024). Includes an update on Lumar stealer and few articles, that were an interesting read. All right, all right, this is a very brief overview. Just starting, let’s see if I’ll have any time and patience to keep posting. Lumar Update. 28 September…
-
Brief look at all things infostealers
Nearly a month ago, I gave a talk at the HelSec meetup. This was my second time giving a talk, and whoever gives 2 or more talks at the HelSec receives a title of a Legend. Pretty cool and nice. It’s been a long while since I attended the meetup, and it was very pleasant…
-
Yet another stealer targeting macOS
Seems that infostealer developers are paying more and more attention to the macOS user base (or rather victim base). In the recent past, few strains of infostealer malware targeting macOS platform were found operating and there are some deeper analyses of the malware by security vendors. Recently, while browsing the infamous XSS forum, I stumbled…
-
Leak of FIFA World Cup 2018 Visitors
I haven’t kept this blog nicely updated, have I? Well, family, work, seasonal depressions, you know, usual excuses. However, recently I came across of an interesting leak, allegedly containing personal information of the visitors of the FIFA World Cup 2018, which was held in Russia. The database, posted over at BreachForums in the end of…