Dangerous new infostealer targets top password managers

Lewis Maddison

July 4, 2023 at 1:20 PM·2 min read

A new Windows infostealer is on the loose, stealing highly sensitive information and featuring clever ways to evade detection by security software.

Known as the Meduza Stealer, its sole purpose is "comprehensive data theft," according to cybersecurity researchers at Uptycs who discovered the malware, as it scours "users' browsing activities, extracting a wide array of browser-related data."

The security firm added that crypto wallet extensions, password managers and 2FA extensions are also vulnerable. In order to avoid detection, Meduza terminates itself if connection with the threat actor's server fails.

Self-termination

Interestingly, it also self-terminates if the victim's system is located in certain countries, such as those within the Commonwealth of Independent States (CIS) and Turkmenistan.

Meduza also gathers data from Windows Registry entries and a list of installed games on the target's endpoint, indicating its far-reaching information extraction goals. A web panel interface also gives the attacker details on what Meduza has managed to steal, as well as the ability to download or delete said data.

> This dangerous new Android malware can steal your passwords and 2FA codes

> A nasty new infostealer malware is landing in email inboxes

> Proton's new password manager has just landed for all users

According to the researchers at Uptycs, "This in-depth feature set showcases the sophisticated nature of the Meduza Stealer and the lengths its creators are willing to go to ensure its success."

It is currently for sale on dark web forums and the encrypted messaging app Telegram, with a monthly subscription costing $199 and a lifetime license $1,199.

Providing malicious tools as a service is fast becoming the norm, allowing criminals to carry out cyberattacks without needing technical knowledge - they merely rent the software used to deal the damage from others.

Research by antivirus firm Sophos claims to show that dropper-as-a-service (DaaS) platforms are being used more and more by malware developers, and ransomware-as-a-service (RaaS) models are becoming more popular too, again due to their ease of use by cybercriminals.

Protect yourself with the best identity theft protection tools

Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
PGA Championship: Will Zalatoris says group of players considered asking for postponement after death, Scottie Scheffler arrest
It was a surreal day at the PGA Championship.
Yahoo Finance
Under Armour is collapsing — And Kevin Plank has to take the blame
The Under Armour meltdown continues.
Yahoo Finance
Housing experts revise mortgage rate forecasts for remainder of 2024
Experts are revising their forecasts about mortgage rates and home prices for the rest of the year.
Yahoo Sports
UFC Vegas 92: Piera Rodríguez DQ'd for multiple illegal headbutts vs. Ariane Carnelossi
Rodríguez was warned by the ref to watch her head. She responded by headbutting her opponent even harder.
Yahoo Sports
Tied for the most bets for No. 1 overall pick in NBA Draft is ... Bronny James?
The co-leader in bets for the No. 1 overall pick is a stunner.
Yahoo Sports
Report: Fanatics files lawsuit against Cardinals rookie WR Marvin Harrison Jr. for breach of contract
Marvin Harrison Jr., Fanatics said, “rejected or ignored every request” from the company while refusing to fulfill obligations of their contract that was signed last May.
Yahoo Sports
Welcome to the WNBA: Caitlin Clark's regular-season debut is anything but easy
Clark set the Indiana Fever’s franchise record for turnovers (10), shot 5-of-15 from the floor and struggled with the Connecticut Sun’s physical defense.
Yahoo Sports
Pacers' Tyrese Haliburton gets last word after defeating Knicks with Reggie Miller hoodie
Indiana Pacers star Tyrese Haliburton took one last dig at the New York Knicks with a sweatshirt sporting an infamous Reggie Miller photo.
Yahoo Sports
Preakness Stakes 2024 winner, payouts, results: Seize the Grey wins at Pimlico, Mystik Dan finishes 2nd, ending Triple Crown bid
Live updates from the 149th Preakness Stakes at Pimlico Race Course in Baltimore
Engadget
Apple will reportedly offer higher trade-in credit for old iPhones for the next two weeks
According to Bloomberg’s Mark Gurman, Apple will be offering a little more than usual for some trade-ins starting next week in the US and Canada. That's as long as you're getting one of the iPhone 15 models.
Yahoo Sports
Auburn RB Brian Battie critically wounded in Sarasota shooting
Battie's older brother Tommie was killed and three others were shot early Saturday morning .
Yahoo Finance
Vanguard 'nickel-and-dimes Grandma' after 49 years without junk fees
Vanguard has long had a reputation for eschewing the random fees asset managers are known for. But as our contributing columnist Allan Sloan notes, the company has started charging what he calls chintzy fees.
Yahoo Sports
Victor Wembanyama, Chet Holmgren lead NBA All-Rookie teams with unanimous selections
Wembanyama and Holmgren received 99 of a possible 99 first first-place votes.
Yahoo Sports
Why Scottie Scheffler won’t be appearing in court this week
Scottie Scheffler’s arraignment on charges stemming from a traffic incident outside Valhalla Golf Club has been delayed until June 3.
Yahoo Finance
The coming Social Security fight could be 1983 all over again
To figure out how Social Security's insolvency debate may play out in the years ahead, it helps to consider what transpired in 1983.
Yahoo Sports
NBA Draft Combine reactions: Edey oh my, Bronny James is ready & whose stock is rising? | On the Clock with Krysten Peek
Yahoo Sports NBA draft expert Krysten Peek is back for another season of On the Clock with Krysten Peek. Krysten just spent the week in Chicago at the NBA Draft Combine and kicks off draft season joined by CBS Sports' Kyle Boone.
Yahoo Sports
LPGA monitoring after 10 golfers, including Rose Zhang, withdraw from Mizuho Americas Open
Rose Zhang was one of seven golfers who withdrew from the tournament due to an illness.
Yahoo Sports
Caitlin Clark teams with Wilson to launch first signature basketball collection since Michael Jordan's
Not even LeBron can say he's launched a signature basketball collection with Wilson.
Yahoo Sports
Phillies taking advantage, Yankees pitching dilemma, Skenes impresses at Wrigley & Cardinals City Connect
Jake Mintz & Jordan Shusterman talk about the Phillies taking advantage of their weak schedule, the Yankees’ rotation dilemma when Gerrit Cole returns, Paul Skenes’ encore performance against the Cubs and the Cardinals’ City Connect uniforms.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Dangerous new infostealer targets top password managers

Self-termination

Recommended Stories

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

PGA Championship: Will Zalatoris says group of players considered asking for postponement after death, Scottie Scheffler arrest

Under Armour is collapsing — And Kevin Plank has to take the blame

Housing experts revise mortgage rate forecasts for remainder of 2024

UFC Vegas 92: Piera Rodríguez DQ'd for multiple illegal headbutts vs. Ariane Carnelossi

Tied for the most bets for No. 1 overall pick in NBA Draft is ... Bronny James?

Report: Fanatics files lawsuit against Cardinals rookie WR Marvin Harrison Jr. for breach of contract

Welcome to the WNBA: Caitlin Clark's regular-season debut is anything but easy

Pacers' Tyrese Haliburton gets last word after defeating Knicks with Reggie Miller hoodie

Preakness Stakes 2024 winner, payouts, results: Seize the Grey wins at Pimlico, Mystik Dan finishes 2nd, ending Triple Crown bid

Apple will reportedly offer higher trade-in credit for old iPhones for the next two weeks

Auburn RB Brian Battie critically wounded in Sarasota shooting

Vanguard 'nickel-and-dimes Grandma' after 49 years without junk fees

Victor Wembanyama, Chet Holmgren lead NBA All-Rookie teams with unanimous selections

Why Scottie Scheffler won’t be appearing in court this week

The coming Social Security fight could be 1983 all over again

NBA Draft Combine reactions: Edey oh my, Bronny James is ready & whose stock is rising? | On the Clock with Krysten Peek

LPGA monitoring after 10 golfers, including Rose Zhang, withdraw from Mizuho Americas Open

Caitlin Clark teams with Wilson to launch first signature basketball collection since Michael Jordan's

Phillies taking advantage, Yankees pitching dilemma, Skenes impresses at Wrigley & Cardinals City Connect