Infostealer Archives • Daily CyberSecurity

New PawsRunner Steganography Loader Evades EDR to Deploy PureLogs Infostealer

PawsRunner Steganography Loader PureLogs Infostealer Campaign

New PawsRunner Steganography Loader Evades EDR to Deploy PureLogs Infostealer

Ddos May 21, 2026

The use of steganography—the ancient art of hiding secret messages inside seemingly ordinary files—is experiencing a massive...

Bypassing MFA: Gremlin Stealer Evolves into Advanced Memory-Resident Session Hijacker Gremlin Stealer Unit 42 Session Hijacking Malware

Bypassing MFA: Gremlin Stealer Evolves into Advanced Memory-Resident Session Hijacker

Ddos May 21, 2026

Information stealers are no longer just basic, entry-level scripts designed to lift saved passwords from standard browser...

Tactical Misdirection: The “Hologram” Malware Framework Hijacking AI Enthusiasts Hologram Malware Framework OpenClaw Malvertising

Tactical Misdirection: The “Hologram” Malware Framework Hijacking AI Enthusiasts

Ddos May 11, 2026

Netskope Threat Labs has recently uncovered a sophisticated, multi-wave campaign that has evolved from a simple credential...

New “ClickFix” Campaign Bypasses Gatekeeper to Hijack macOS Devices macOS ClickFix Campaign Terminal Infostealer

New “ClickFix” Campaign Bypasses Gatekeeper to Hijack macOS Devices

Ddos May 9, 2026

For years, macOS users have relied on community forums, Medium articles, and tech blogs to solve everyday...

Inside the Stealthy Evolution of Vidar Infostealer Vidar Infostealer Stealth Attack Framework

Inside the Stealthy Evolution of Vidar Infostealer

Ddos April 28, 2026

Vidar, once a straightforward credential stealer, has officially completed its transformation into a “multi-stage, stealth-driven attack framework”....

ClickFix 2026: New AppleScript Malware Held macOS Users Hostage for Passwords ClickFix macOS Terminal Infostealer

ClickFix 2026: New AppleScript Malware Held macOS Users Hostage for Passwords

Ddos April 23, 2026

A sophisticated cross-platform social engineering campaign, dubbed ClickFix, has evolved to target macOS users with a relentless...

More Than a Miner: The Evasive MiningDropper Framework Hijacking Android Worldwide MiningDropper Android Malware Framework

More Than a Miner: The Evasive MiningDropper Framework Hijacking Android Worldwide

Ddos April 20, 2026

Security researchers are sounding the alarm over a versatile and evasive Android malware delivery system that is...

North Korea’s “OtterCookie” Hides Inside Benign npm Wrappers Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware

Seedworm Espionage Campaign 2026 ChromElevator Stealer DLL Sideloading SIM Swapping Crypto Theft Lazarus Comebacker, Aerospace Espionage Delete PlugX Malware

North Korea’s “OtterCookie” Hides Inside Benign npm Wrappers

Ddos April 16, 2026

A new investigative report from Panther has identified a dangerous cluster of malicious packages lurking within the...

The Script Editor Shift: How ClickFix Evades macOS 26.4 Security to Deliver Atomic Stealer ClickFix macOS Script Editor Attack

The Script Editor Shift: How ClickFix Evades macOS 26.4 Security to Deliver Atomic Stealer

Ddos April 13, 2026

In the ever-evolving game of digital cat-and-mouse, Jamf Threat Labs has identified a clever adaptation of the...

New ClickFix Campaign Unveiled: Modular NodeJS Malware Targets Windows Users Node.js Infostealer ClickFix Campaign

New ClickFix Campaign Unveiled: Modular NodeJS Malware Targets Windows Users

Ddos April 10, 2026

Netskope Threat Labs has uncovered a sophisticated new ClickFix campaign targeting Windows users with a high-quality, custom-built...

Storm: 2026’s Newest Infostealer Bypasses Chrome to Hijack Your MFA Sessions Storm Infostealer Session Cookie Theft

Storm: 2026’s Newest Infostealer Bypasses Chrome to Hijack Your MFA Sessions

Ddos April 9, 2026

A new and highly efficient threat has emerged on underground cybercrime networks, signaling a significant shift in...

RedLine Infostealer Kingpin Extradited to U.S. to Face Federal Charges RedLine Infostealer Operation Magnus

RedLine Infostealer Kingpin Extradited to U.S. to Face Federal Charges

Ddos March 27, 2026

The global dragnet closing in on the world’s most prolific malware developers has secured a major victory....

VoidStealer Debuts Novel Debugger Bypass for Chrome and Edge Encryption VoidStealer ABE Bypass

VoidStealer Debuts Novel Debugger Bypass for Chrome and Edge Encryption

Ddos March 25, 2026

Researchers at Gen Threat Labs, led by Threat Researcher Vojtěch Krejsa, have identified VoidStealer—the first infostealer observed...

SEO Poisoning and “ClickFix” Tactics: The Rise of MacSync Stealer OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

SEO Poisoning and “ClickFix” Tactics: The Rise of MacSync Stealer

Ddos March 23, 2026

A sophisticated new macOS malware delivery chain is targeting users through a blend of high-ranking search results...

Malicious Windsurf IDE Extension Uses Solana Blockchain to Steal Developer Data Windsurf Stealer Solana Blockchain Malware

Malicious Windsurf IDE Extension Uses Solana Blockchain to Steal Developer Data

Ddos March 22, 2026

Security researchers at Bitdefender have uncovered a sophisticated cyberattack targeting the developer community through a malicious extension...

Game Over: Vidar Stealer 2.0 is Hijacking Gamers with Fake Cheats DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

Game Over: Vidar Stealer 2.0 is Hijacking Gamers with Fake Cheats

Ddos March 20, 2026

A massive malware distribution campaign has been uncovered targeting the global gaming community under the guise of...

The CAPTCHA Trap: How a Global ‘ClickFix’ Campaign Weaponizes WordPress to Drain Digital Wallets ClickFix Campaign WordPress Malware

The CAPTCHA Trap: How a Global ‘ClickFix’ Campaign Weaponizes WordPress to Drain Digital Wallets

Ddos March 18, 2026

In a sophisticated new campaign active since late 2025, a mysterious threat actor has been turning the...

Fake GitHub Repositories Unleash BoryptGrab Stealer and TunnesshClient Backdoor TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

Fake GitHub Repositories Unleash BoryptGrab Stealer and TunnesshClient Backdoor

Ddos March 9, 2026

Security researchers from TrendMicro have identified a sophisticated new threat actor utilizing SEO-optimized GitHub repositories to distribute...

AuraStealer: The “Result-Oriented” Malware Rising from the Post-Lumma Void AuraStealer Malware Infostealer

AuraStealer: The “Result-Oriented” Malware Rising from the Post-Lumma Void

Ddos March 4, 2026

Following the high-profile takedown of the Lumma stealer infrastructure in 2025, a new threat is rapidly maneuvering...

The High Cost of ‘Free’: How PiviGames Became a Lovecraftian Malware Hub for HijackLoader and ACRStealer Lotus Wiper Digital Sabotage G_Wagon Malware NPM Supply Chain Attack IMAPLoader malware ResolverRAT Malware Evasion

Lotus Wiper Digital Sabotage G_Wagon Malware NPM Supply Chain Attack IMAPLoader malware ResolverRAT Malware Evasion

The High Cost of ‘Free’: How PiviGames Became a Lovecraftian Malware Hub for HijackLoader and ACRStealer

Ddos March 3, 2026

In the world of PC gaming, the lure of “free” pirated content has always carried risks. However,...

Critical Alert 1 Active Exploit Detected Today