Security News > 2023 > July > New Malware Targets 97 Browser Variants, 76 Crypto Wallets & 19 Password Managers
Learn how the Meduza Stealer malware works, what it targets and how to protect your company from this cybersecurity threat.
New malware dubbed Meduza Stealer can steal information from a large number of browsers, password managers and cryptocurrency wallets, according to a report from cybersecurity company Uptycs.
It's highly suspected that Meduza Stealer is spread via the usual methods used for information stealers, such as compromised websites spreading the malware and phishing emails.
A list of 97 browser variants is embedded in the malware, showing a huge effort not to miss any data from browsers.
Nineteen password managers are targeted by Meduza Stealer based on their Extension ID. LastPass, 1Password and Authy are just three of the password managers listed.
Figure C. The malware specifically targets extensions associated with two-factor authentication and password managers with the intention of extracting data; these extensions possess significant information and may contain vulnerabilities.
News URL
Related news
- Decentralization is happening everywhere, so why are crypto wallets “walled gardens”? (source)
- Crazy Evil Gang Targets Crypto with StealC, AMOS, and Angel Drainer Malware (source)
- Google Play, Apple App Store apps caught stealing crypto wallets (source)
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- Cross-Platform JavaScript Stealer Targets Crypto Wallets in New Lazarus Group Campaign (source)
- North Korean APT Kimsuky Uses forceCopy Malware to Steal Browser-Stored Credentials (source)
- SparkCat Malware Uses OCR to Extract Crypto Wallet Recovery Phrases from Images (source)
- Week in review: Exploited 7-Zip 0-day flaw, crypto-stealing malware found on App Store, Google Play (source)
- Microsoft spots XCSSET macOS malware variant used for crypto theft (source)
- New Mac Malware Poses as Browser Updates (source)