InfoStealers

COMPROMISED MACHINES

the all-around
info-stealers hub.

Explore topics →

What are infostealers?

What is an “info-stealer”? (Part Ⅰ)

June 7, 2022

Botnets & Info-Stealers (Part Ⅱ)

July 14, 2022

Botnets & Info-Stealers (Part Ⅲ)

January 1, 2023

BLOG

READ OUR POSTS ABOUT INFO STEALERS

REPORTS

STAY UPDATED WITH OUR INFO STEALER REPORTS

FREE TOOLS

ARE YOU COMPROMISED?

As Seen On

Featured Articles →

Massive MOVEit Vulnerability Breach: Hacker Leaks Employee Data from Amazon, McDonald’s, HSBC, HP, and Potentially 1000+ Other Companies

Threat actors use copyright infringement phishing lure to deploy infostealers

Mnemonic Security Podcast – Infostealers

Schneider Electric Hacked and Blackmailed Following Lumma Infostealer Infection

Law Enforcement Hacked Infrastructure of Redline and Meta Infostealers (Operation Magnus)

Threat Actors Push ClickFix Fake Browser Updates Using Stolen Credentials

Massive MOVEit Vulnerability Breach: Hacker Leaks Employee Data from Amazon, McDonald’s, HSBC, HP, and Potentially 1000+ Other Companies

Written by Alon Gal A person operating under the username Nam3L3ss has exploited a critical vulnerability in MOVEit, a file transfer software, exposing extensive employee data from prominent companies worldwide. The vulnerability, known as CVE-2023–34362, has led to one of the most substantial leaks of corporate information this year, affecting various sectors, including finance, healthcare, technology, and retail. The MOVEit

Threat actors use copyright infringement phishing lure to deploy infostealers

Phishing email campaign targets Taiwan Talos observed an unknown threat actor conducting a malicious phishing campaign targeting victims in Taiwan since at least July 2024. The campaign specifically targets victims whose Facebook accounts are used for business or advertising purposes. The initial vector of the campaign is a phishing email containing a malware download link. The phishing email uses traditional

Mnemonic Security Podcast – Infostealers

In this new episode of the mnemonic security podcast, Robby Peralta is joined by Leonid Rozenberg, a cybersecurity expert and dark web researcher at Hudson Rock, to discuss infostealers. Rozenberg provides a brief history of infostealers, which began with Zeus in 2007, a malware initially designed to steal only banking information. Today, infostealers have evolved to capture all types of

Schneider Electric Hacked and Blackmailed Following Lumma Infostealer Infection

Free Infostealer Intelligence Tools by Hudson Rock – www.hudsonrock.com/free-tools On November 4th, Schneider Electric acknowledged a data breach in which hackers stole 40GB of data from the company’s Jira server. “Schneider Electric is investigating a cybersecurity incident involving unauthorized access to one of our internal project execution tracking platforms which is hosted within an isolated environment,” Schneider Electric told BleepingComputer.

Law Enforcement Hacked Infrastructure of Redline and Meta Infostealers (Operation Magnus)

*Not fully confirmed yet According to the website which was discovered through Redline related Telegram channels, law enforcement was able to hack the infrastructure of Redline and Meta Infostealers and obtain critical data With the message being that more information is to come In addition, law enforcement attached the following video: Update: Security researcher g0njxa reached out to the operators

Threat Actors Push ClickFix Fake Browser Updates Using Stolen Credentials

Key findings Overview The GoDaddy Security team is tracking a new variant of ClickFix (also known as ClearFake) fake browser update malware that is distributed via bogus WordPress plugins. These seemingly legitimate plugins are designed to appear harmless to website administrators but contain embedded malicious scripts that deliver fake browser update prompts to end-users. This technique leverages social engineering strategies to trick users

INFOSTEALERS WEEKLY REPORT

InfoStealers Weekly Report – In this comprehensive report, we provide you with valuable insights into the most pressing threats facing organizations today. As cyberattacks continue to grow in complexity and scale, our mission is to equip you with the knowledge and tools needed to safeguard your sensitive information. Join us as we analyze the top compromised domains, identify trends in compromised employees and users, and examine the global impact of InfoStealer infections. Stay informed, stay protected, and stay one step ahead of cyber threats with our weekly report and info-stealers statistics.

2,302