Introduction
Void Stealer: The Infostealer Malware Quietly Targeting Organizations in 2026 Void Stealer is an infostealer malware that emerged in late 2025 and has been running active campaigns against users and organizations ever since. Distributed under a Malware-as-a-Service (MaaS) model through Telegram channels and underground forums, it allows any operator to deploy credential-stealing campaigns for a […]
New „Storm“ infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA. […]
A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. […]
The Unknown Stealers: What’s Hidden Below the Radar The stealer ecosystem has matured into a professionalized criminal economy that most organizations are simply not monitoring closely enough. While the industry fixates on household names like Lumma and RedLine, a growing class of lesser-known, actively deployed stealers, Void, Datura, Misericorde, Saturn, and others, are quietly collecting […]
Licensed malware with built-in persistence and automation enables attackers to continuously siphon credentials, session data, and cryptocurrency assets. The post Venom Stealer Raises Stakes With Continuous Credential Harvesting appeared first on SecurityWeek.
A new service on the cybercrime market provides automated capabilities to create persistent information-stealing social engineering attacks.
Identity Threat Intelligence Report: How Infostealer Malware Is Reshaping Cyber Risk?The network edge used to be the thing worth defending. Organizations built their security around it. Then came cloud, SaaS, and remote work, and the idea of a defined boundary quietly stopped being true.What replaced it was Identity. Every corporate resource, from email to infrastructure […]
Auf der Entwicklerplattform GitHub kursiert seit einigen Wochen eine Malware, die sich auch am OpenClaw-Hype bedient. Repositories tauchen immer wieder auf.
A phishing campaign targeting healthcare, government, hospitality, and education sectors in various countries uses several evasion techniques to avoid detection.