Password managers are meant to make log in credentials safer than might have been the case otherwise, but in spite of the fact that this is the case, a new infostealer is putting them and their security at risk. A team of cybersecurity experts working at Uptycs discovered this infostealer, giving it the name Meduza Stealer, and they revealed that it can lead to widespread data theft with all things having been considered and taken into account.
Practically all of the security enhancing protocols and platforms such as two factor authentication, extensions for crypto wallets as well as the all important password managers can be compromised by the Meduza Stealer. With all of that having been said and now out of the way, it is important to note that this infostealer is also difficult to detect .
If the connection with the server of the malicious actor implementing it is disconnected, the infostealer will immediately delete itself in its entirety. What’s more, it seems like the Meduza Stealer also terminates itself if it arrives at a device or a system that is located within specific countries.
Such an action is telling because of the fact that this is the sort of thing that could potentially end up indicating that these countries are being protected by the malicious actors. Turkmenistan and the Commonwealth of Independent States are all exempt from this infostealer, which lends credence to the notion that threat actors might actually be from these locales.
Purchasing this infotealer is also excessively easy. It is being offered through Telegram, with a lifetime subscription costing only around $1,199. Monthly subscriptions can cost around $199 per month, which just goes to show that the malware as a service niche is thriving at the expense of cybersecurity around the world.
It will be interesting to see how security experts tackle this new infostealer, since this could potentially cause enormous upheaval. The potential for harm is so high that the Meduza Stealer could create a ripple effect that will create a highly insecure environment on the internet with funds and log in credentials being easier to steal.
Read next: New Security Alarm Raised Against Malicious Apps Collecting User Data On Google Play With Over 1.5 Million Downloads
Practically all of the security enhancing protocols and platforms such as two factor authentication, extensions for crypto wallets as well as the all important password managers can be compromised by the Meduza Stealer. With all of that having been said and now out of the way, it is important to note that this infostealer is also difficult to detect .
If the connection with the server of the malicious actor implementing it is disconnected, the infostealer will immediately delete itself in its entirety. What’s more, it seems like the Meduza Stealer also terminates itself if it arrives at a device or a system that is located within specific countries.
Such an action is telling because of the fact that this is the sort of thing that could potentially end up indicating that these countries are being protected by the malicious actors. Turkmenistan and the Commonwealth of Independent States are all exempt from this infostealer, which lends credence to the notion that threat actors might actually be from these locales.
Purchasing this infotealer is also excessively easy. It is being offered through Telegram, with a lifetime subscription costing only around $1,199. Monthly subscriptions can cost around $199 per month, which just goes to show that the malware as a service niche is thriving at the expense of cybersecurity around the world.
It will be interesting to see how security experts tackle this new infostealer, since this could potentially cause enormous upheaval. The potential for harm is so high that the Meduza Stealer could create a ripple effect that will create a highly insecure environment on the internet with funds and log in credentials being easier to steal.
Read next: New Security Alarm Raised Against Malicious Apps Collecting User Data On Google Play With Over 1.5 Million Downloads
