A brief look at all things infostealers for the week 48, 2024 (25.11.2024–01.112.2024). Was a bit too busy with new work and family stuff, forgot to update. There wasn’t too many developments in infostealers during the week 48. Well, except Lumma stealer posting 3 updates during the week 🙂
Lumma Update
Note: The update posts are copy-pasted as is (and machine-translated if post wasn’t available in English)
Update 26.11
- Improved search by url
- Restore token collection partially restored
- Fixed bug when not all cookies were received
- Cleaned WD 10/11 + Cloud
Screenshot from XSS forum
Update 27.11
- Improved search for filters in logs
- Added ability to disable History file collection for a specific browser in the config
- Cleaned Windows Defender 10/11 + Cloud
- Common gaskets updated
- Domain with old logs changed (see main panel page)
- Added a new API method that allows you to get the current build version
Screenshot from XSS forum
Update 30.11
- Improved collection of passwords, autofills in Chromium browsers
- Improved collection of cookies in Opera, Opera GX browsers
- Added a limit of three uploads at the same time
- Cleaned LNK builder
- Cleanup WD 10/11 + Cloud
Screenshot from XSS forum
Articles/News
Source Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ Leaked
- https://www.securityweek.com/source-code-of-3000-a-month-macos-malware-banshee-stealer-leaked/