www.rivitmedia.comwww.rivitmedia.comwww.rivitmedia.com
  • Home
  • Tech News
    Tech NewsShow More
    Malicious Go Modules Unleash Disk-Wiping Chaos in Linux Supply Chain Attack
    4 Min Read
    Agentic AI: Transforming Cybersecurity in 2025
    3 Min Read
    Cybersecurity CEO Accused of Planting Malware in Hospital Systems: A Breach of Trust That Shocks the Industry
    6 Min Read
    Cloud Convenience, Criminal Opportunity: How Google Sites Became a Launchpad for Elite Phishing
    6 Min Read
    Targeted Exploits Highlight Need for Vigilance Among High-Risk Apple Users
    4 Min Read
  • Cyber Threats
    • Malware
    • Ransomware
    • Trojans
    • Adware
    • Browser Hijackers
    • Mac Malware
    • Android Threats
    • iPhone Threats
    • Potentially Unwanted Programs (PUPs)
    • Online Scams
  • How-To-Guides
  • Product Reviews
    • Hardware
    • Software
  • IT/Cybersecurity Best Practices
  • FREE SCAN
  • Cybersecurity for Business
Search
  • ABOUT US
  • TERMS AND SERVICES
  • SITEMAP
  • CONTACT US
© 2023 rivitMedia.com. All Rights Reserved.
Reading: MassLogger Malware Uses ‘Fileless’ Attack to Steal Passwords from Discord, Microsoft Outlook & Others 
Share
Notification Show More
Font ResizerAa
www.rivitmedia.comwww.rivitmedia.com
Font ResizerAa
  • Online Scams
  • Tech News
  • Cyber Threats
  • Mac Malware
  • Cybersecurity for Business
  • FREE SCAN
Search
  • Home
  • Tech News
  • Cyber Threats
    • Malware
    • Ransomware
    • Trojans
    • Adware
    • Browser Hijackers
    • Mac Malware
    • Android Threats
    • iPhone Threats
    • Potentially Unwanted Programs (PUPs)
    • Online Scams
  • How-To-Guides
  • Product Reviews
    • Hardware
    • Software
  • IT/Cybersecurity Best Practices
    • Cybersecurity for Business
  • FREE SCAN
  • Sitemap
Follow US
  • ABOUT US
  • TERMS AND SERVICES
  • SITEMAP
  • CONTACT US
© 2022 Foxiz News Network. Ruby Design Company. All Rights Reserved.
www.rivitmedia.com > Blog > Cyber Threats > Malware > MassLogger Malware Uses ‘Fileless’ Attack to Steal Passwords from Discord, Microsoft Outlook & Others 
Malware

MassLogger Malware Uses ‘Fileless’ Attack to Steal Passwords from Discord, Microsoft Outlook & Others 

riviTMedia Research
Last updated: October 24, 2023 4:04 pm
riviTMedia Research
Share
malware
SHARE

In early 2021, security researchers discovered a malware campaign that targeted Windows computers to steal login credentials for several popular applications like Discord, Microsoft Outlook, most of the major web browsers, NordVPN, and many others. It achieves this via a multiple-stage ‘fileless’ attack protocol.

According to Cisco Talos research team member Vanja Svajcer, the malware is a variant of an existing trojan called MassLogger. “Although operations of the MassLogger trojan have been previously documented, we found the new campaign notable for using the compiled HTML file format to start the infection chain,” Svajcer explained in a blog post.

The malware initiates its attack scheme from inside the system’s memory, which makes it fileless, while the delivery of the payload comes via a phishing email. The malware’s code is hidden inside a compressed RAR archive that bears an unusual filename extension. When the phishing email is opened, it begins the process of injecting malware into system RAM.

Both home and business systems are at risk, as this type of malware is capable of easily slipping under the radar right now as ransomware attacks are getting more publicity.

“It is important to keep in mind that crimeware actors are still active and can inflict significant damage to organizations by stealing users’ credentials. The credentials themselves have value on the dark web and actors sell them for money or use them in other attacks.,” Svajcer writes.

Cisco Talos believes that the recent MassLogger campaign that started in January of 2021 is mostly focused on organizations in Turkey, Latvia, and Italy, for the time being. They previously observed similar attacks using older versions of MassLogger elsewhere globally.

This hacking campaign, which relies on phishing emails, can be easily avoided by utilizing smart computing habits, being on the lookout for suspicious emails containing unsolicited attachments. Now is a great time to remind friends and family to do the same.

If you are still having trouble, consider contacting remote technical support options.

You Might Also Like

The “American Express – ChargeBack Payment” Scam Email
OceanSpy Ransomware: Understanding the Growing Ransomware Threat
Program:Win32/Wacapew.C!ml Malware: A Guide to Removal and Prevention
Understanding and Removing The Bully Ransomware
Cryptopia Email Scam: How to Recognize, Remove, and Prevent Future Attacks
TAGGED:MalwareTrojans

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Copy Link Print
Share
Previous Article SkilledObject is Yet Another Adware App Afflicting Macs
Next Article ransomware, stop/djvu There’s Nothing Cute about HelloKitty Ransomware as it Threatens to Leak Source Code of the Video Game ‘Cyberpunk 2077’
Leave a Comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Scan Your System for Free

✅ Free Scan Available 

✅ 13M Scans/Month

✅ Instant Detection

Download SpyHunter

//

Check in Daily for the best technology and Cybersecurity based content on the internet.

Quick Link

  • ABOUT US
  • TERMS AND SERVICES
  • SITEMAP
  • CONTACT US

Sign Up for Our Newsletter

Subscribe to our newsletter to get our newest articles instantly!

www.rivitmedia.comwww.rivitmedia.com
© 2023 • rivitmedia.com All Rights Reserved.
  • ABOUT US
  • TERMS AND SERVICES
  • SITEMAP
  • CONTACT US