New Software Mystic Stealer Can Attack 40 Browsers And 70 Browser Extensions
- The new Mystic Stealer malware is increasingly being used in attacks with a rental fee of $150/month.
- According to reports, it can quickly attack 40 browsers and 70 browser extensions, and crypto-wallets.
- Its first version was released in April but was quickly upgraded to version 1.2 at the end of May.
A new information-stealing malware called ‘Mystic Stealer’, promoted on hacking forums and darknet markets since April 2023, quickly gained attention in the criminal community life by its devastation.
This malware can target all versions of Windows, including XP to 11, supporting 32 and 64-bit operating system architectures. It doesn’t need any dependencies, so its traces on infected systems are minimal, while it works in memory to avoid detection by anti-virus products.
SlowMist’s Director of Information Security tweeted that a new crypto-stealing software, Mystic Stealer, appeared recently that could target 40 browsers, 70 browser extensions, and electronic wallets like MetaMask, Coinbase Wallet, Binance, Rabby Wallet, OKX Wallet, OneKey, and other famous wallets are currently the most popular malware, be aware of the risks.
Besides, this software also targets 21 crypto apps, 9 MFA and password manager apps, 55 crypto browser extensions, Steam and Telegram logins, and more.
The Mystic Stealer reports, published almost simultaneously in a joint report between InQuest and Zscaler and a separate report by Cyfirma, warn of the emergence of new malware and its level of sophistication, and an increase in sales brought in many new online campaigns.
It is known that Mystic Stealer released version 1.0 at the end of April 2023 but was quickly upgraded to version 1.2 at the end of May, showing that the project is in active development. It is currently rented at $150/month.
The project also operates a Telegram channel (Mystic Stealer News) where development news, feature requests, and other related topics are discussed.
Reportedly, the creator of the new malware accepts feedback from long-standing members of the underground hacking community and openly invites them to share suggestions for improving Mystic.
Cyfirma reports that space veterans have verified the effectiveness of the malware and confirmed that although in its early development state, it is a powerful information stealer.
While the future of Mystic Stealer is still up for debate, given the volatile nature of illegal MaaS projects, its emergence signals an increased risk to users and organizations.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join us to keep track of news: https://linktr.ee/coincu