InfoStealers Dominate as Lumma Stealer Detections Soar by Almost 400%

Bratislava-based cyber security software provider, ESET, has found a 369% increase in detections of the Lumma Stealer InfoStealer, now dominating attacks by targeting 2FA browser extensions, user credentials and cryptocurrency wallets. Accordingly, organisations should consider the threat of InfoStealers and other malicious software as part of a cohesive cyber security strategy.

An InfoStealer is a type of malicious software designed to secretly gather private information, such as passwords, financial details, or other sensitive data, from an infected device. Once it collects this data, it sends it to the attacker, who can then misuse it for financial gain, identity theft, or other illegal activities.

Meanwhile, despite notorious “infostealer-as-a-service” Redline Stealer being taken down by international authorities in October 2024 as part of Operation Magnus, it is expected that its demise will lead to the expansion of other similar threats, according to ESET. It expects that the power vacuum left by RedLine’s takedown will lead to a bump in the activity of other Malware-as-a-Service (MaaS) infostealers. Indeed, it specifically mentions RansomHub ransomware-as-a-services, which became dominant in the latter half of 2024, “stacking up hundreds of victims by the end of H2 2024.”?

Read more here.