Home / Technology / New Malware 'SantaStealer' Targets Holiday Season
New Malware 'SantaStealer' Targets Holiday Season
23 Dec
Summary
- SantaStealer info-stealer operates as malware-as-a-service for a monthly fee.
- It targets browsers, messaging apps, gaming platforms, and crypto wallets.
- New delivery methods include social media commands and 'quick fixes'.
A new malware known as SantaStealer is making its presence known on underground hacker forums, operating as a malware-as-a-service. This stealthy, memory-only info-stealer is available for a monthly fee, allowing cybercriminals to target users at scale. It is designed to quietly siphon data from various applications, including browsers, messaging apps, gaming platforms, and cryptocurrency wallets.
SantaStealer employs multiple data-collection modules and can even take screenshots. Its data is compressed and sent in chunks to a command-and-control server, with capabilities to evade detection and target specific regions or delay execution. Attackers are increasingly using social media commands and disguised "quick fixes" for delivery, alongside traditional methods like phishing and pirated software.
To combat threats like SantaStealer, users are advised to employ strong antivirus software, keep systems updated, and utilize password managers and two-factor authentication. Extreme caution with online commands and avoiding pirated software are also crucial steps in protecting personal information from evolving cyber threats.
