PROBABLYPWNED
Home/Tag/Infostealer

Infostealer

76 articles tagged with "Infostealer"

ResiLoader Kills 140+ Security Tools Before Deploying StealC
Malware3 min read

ResiLoader Kills 140+ Security Tools Before Deploying StealC

Malwarebytes documents a new loader that abuses a legitimate driver to terminate EDR processes, then uses process hollowing to inject the StealC infostealer through fake Google and Cloudflare verification pages.

James RiveraJul 3, 2026
PamStealer Validates Your Mac Password Before Stealing It
Malware4 min read

PamStealer Validates Your Mac Password Before Stealing It

Jamf Threat Labs uncovers a macOS infostealer that impersonates the Maccy clipboard manager, validates credentials through PAM, then harvests browser data, crypto wallets, and iCloud Keychain.

James RiveraJul 3, 2026
Steam Workshop Wallpapers Spread Infostealers, Backdoors
Malware4 min read

Steam Workshop Wallpapers Spread Infostealers, Backdoors

Kaspersky uncovers malware campaign using Wallpaper Engine's Steam Workshop to distribute DarkKomet, Lumma, and Vidar. China-focused attacks stole Steam accounts and deployed cryptominers.

James RiveraJun 16, 2026
Needle Stealer Spreads via Fake TradingView AI Tool
Malware4 min read

Needle Stealer Spreads via Fake TradingView AI Tool

Malwarebytes uncovers campaign using fake TradingClaw website to distribute Needle Stealer malware. The infostealer hijacks browsers to harvest credentials, crypto wallets, and financial data from traders.

Malware DeskApr 28, 2026
Omnistealer: North Korean Malware Hides C2 in Blockchain
Malware4 min read

Omnistealer: North Korean Malware Hides C2 in Blockchain

eSentire researchers expose Omnistealer, a North Korean infostealer storing payloads in blockchain transactions. 300,000 credentials compromised across government and defense sectors.

Malware DeskApr 15, 2026
CPUID Hijacked: CPU-Z, HWMonitor Downloads Served Malware
Malware5 min read

CPUID Hijacked: CPU-Z, HWMonitor Downloads Served Malware

Attackers compromised CPUID's website API for six hours, redirecting CPU-Z and HWMonitor downloads to trojanized installers that steal browser credentials using advanced evasion techniques.

Malware DeskApr 10, 2026
Storm Infostealer Decrypts Credentials Server-Side
Malware4 min read

Storm Infostealer Decrypts Credentials Server-Side

New Storm infostealer bypasses Chrome's App-Bound Encryption by shipping encrypted credentials to attacker infrastructure for decryption. Endpoint tools can't detect it.

Malware DeskApr 3, 2026
Vidar Infostealer Spreads via Hacked WordPress Sites
Malware4 min read

Vidar Infostealer Spreads via Hacked WordPress Sites

Malwarebytes researchers detected a Vidar infostealer campaign using fake CAPTCHA pages on compromised WordPress sites. ClickFix technique tricks users into running malicious PowerShell.

Malware DeskMar 28, 2026