Cybersecurity researchers have found a new Java-based information stealer, NS-STEALER, which uses a Discord bot to extract sensitive data from compromised hosts. The malware is spread via ZIP archives posing as cracked software. The data harvested includes screenshots, cookies, system information, list of installed programs, and session data for Discord, Steam and Telegram. The discovered information is subsequently sent to a Discord Bot channel. A new version of the Chaes malware has also been released by threat actors, which steals login credentials and intercepts crypto transactions.
Laurentian University is facing concerns about the impact of a cyber incident. The university’s officials are working to address the situation and ensure the security