Cybersecurity researchers have found a new Java-based information stealer, NS-STEALER, which uses a Discord bot to extract sensitive data from compromised hosts. The malware is spread via ZIP archives posing as cracked software. The data harvested includes screenshots, cookies, system information, list of installed programs, and session data for Discord, Steam and Telegram. The discovered information is subsequently sent to a Discord Bot channel. A new version of the Chaes malware has also been released by threat actors, which steals login credentials and intercepts crypto transactions.
Microsoft Details Kazuar Malware’s Modular Architecture and P2P Botnet Operations
A nation-state malware known as Kazuar has resurfaced with a far more dangerous design than anyone expected. What once started as a relatively standard backdoor
