'Raccoon' Infostealer Now Targeting 60 Apps: Report

2020-02-25 17:03

While an earlier report from security firm Cybereason found that Raccoon enabled credential stealing from Tor-hosted devices, the new analysis by CyberArk shows that the infostealer has now expanded its reach into popular web browsers, including Google Chrome, Mozilla Firefox, Microsoft Edge and others.

"What used to be reserved for more sophisticated attackers is now possible even for novice players who can buy stealers like Raccoon and use them to get their hands on an organization's sensitive data," the report states.

Cybercriminals can also configure Raccoon to take screenshots of a targeted device and then use the malware as a dropper to deploy second-stage malware, the report adds.

Because Raccoon is easy to use, it enables less sophisticated cybercriminals to leverage it for various criminal schemes, according to CyberArk. "What used to be reserved for more sophisticated attackers is now possible even for novice players who can buy stealers like Raccoon and use them to get their hands on an organization's sensitive data," the report notes.

Another report by Recorded Future finds that Raccoon remains one of the top selling malware rentals within underground forums.

News URL

https://www.inforisktoday.com/raccoon-infostealer-now-targeting-60-apps-report-a-13766

#report