Stealers on the rise: Kral, AMOS, Vidar and ACR

SUMMARY :

This intelligence report analyzes the increasing prevalence of information stealers, focusing on Kral, AMOS, Vidar, and ACR. Kral, delivered by its downloader, targets cryptocurrency wallets and browser data. AMOS, a macOS stealer, spreads through malvertising impersonating Homebrew. Vidar distributes via YouTube comments and uses DLL hijacking, ultimately downloading the ACR stealer. The report highlights the widespread nature of stealers, their popularity among cybercriminals, and the potential for stolen data to be used in further attacks or sold on the dark web. It emphasizes the importance of basic security measures like 2FA and downloading software only from official sources to mitigate these threats.

OPENCTI LABELS :

amos,macos,data exfiltration,vidar,dll hijacking,credential theft,cryptocurrency,aurora,information stealers,kral,penguish,acr


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


Stealers on the rise: Kral, AMOS, Vidar and ACR