Kaspersky has unveiled a new infostealer malware named Stealka, which poses a serious threat to cryptocurrency users by targeting wallets and browser extensions. According to the official information, this malware has been actively used by cybercriminals to hijack accounts and steal digital assets.
Introduction to Stealka Malware
Discovered in November, Stealka has been distributed through reputable platforms like GitHub, SourceForge, and Google Sites, often masquerading as game modifications for popular titles such as Roblox or software cracks for applications like Microsoft Visio. This deceptive approach has allowed attackers to reach a wide audience, increasing the risk of infection among unsuspecting users.
Impact on Browsers and Sensitive Information
Kaspersky researcher Artem Ushkov highlighted the malware's capability to compromise data from browsers utilizing Chromium and Gecko engines, impacting over 100 different browsers, including widely used ones like Chrome and Firefox. The malware primarily targets sensitive information, including:
- autofill data
- sign-in credentials
- payment card details
- settings and databases of 115 browser extensions related to crypto wallets and password managers
Recommendations for Users
In light of these findings, Kaspersky urges users to steer clear of pirated software and to employ reliable antivirus solutions and password managers to safeguard their personal data against such threats.
In a recent case highlighting the ongoing battle against cybercrime, a Ukrainian national has pleaded guilty to ransomware charges, raising concerns about the threats discussed in Kaspersky's report on new malware targeting cryptocurrency users. For more details, see read more.
