Data-stealing malware grows from 4 to 28 per cent in three years

ISLAMABAD: As the malware development market continues to flourish with new stealers such as Lumma, for the last three years, Redline still remains the dominant data-stealing malware used by cybercriminals.

As per the research report, 55 per cent of devices targeted by password-stealer attacks in 2023 have been infected with the Redline malware.

According to information gleaned from log files traded or distributed freely on the dark web, Redline was used in 51 of infostealer infections from 2020 to 2023.

Other notable malware families included Vidar (17 per cent) and Raccoon (nearly 12 per cent). In total, around 100 distinct info stealer types were identified by Kaspersky Digital Footprint Intelligence between 2020 and 2023 using metadata from log files.

Infostealers infiltrate devices to illicitly obtain sensitive credentials such as logins and passwords, which are then peddled on the shadow market, posing significant cybersecurity threats to personal and corporate systems.

The underground market for data-stealing malware development is expanding, evident from the rising popularity of new stealers.

Between 2021 and 2023, the portion of infections caused by new stealers grew from 4 per cent to 28 per cent. Specifically, in 2023, the new “Lumma” stealer alone was responsible for more than 6 per cent of all infections.

Read more: Turkey expresses interest in outsourcing Islamabad airport

“Lumma emerged in 2022 and gained popularity in 2023 through a Malware-as-a-Service (MaaS) distribution model.

This means any criminal, even those without advanced technical skills, can purchase a subscription for a pre-made malicious solution and use this stealer to carry out cyberattacks.