If you are reading this on a Windows device, be on alert for potentially harmful new malware that has been affecting web browsers, password managers, and even cryptocurrency wallets.
A team of Uptycs cybersecurity professionals found this infostealer, naming it Meduza Stealer, and indicated that it can lead to widespread data theft if all factors are analysed and taken into account.
The Meduza Stealer may compromise virtually all security-enhancing methods and platforms, including two-factor authentication, extensions for crypto wallets, and the all-important password managers. With that out of the way, it is crucial to emphasise that this information stealer is very tough to detect.
"Crafted by an enigmatic actor known as 'Meduza,' this malware has been specifically designed to target Windows users and organisations, currently sparing only ten specific countries from its reach," researchers explained.
If the infostealer's connection to the malicious actor's server is lost, it will quickly eliminate itself in its entirety. Furthermore, it appears that the Meduza Stealer terminates itself if it arrives at a device or system located within specific countries.
Such an action is noteworthy since it could potentially indicate that these countries are being safeguarded by bad actors. Turkmenistan and the Commonwealth of Independent States are all excluded from this infostealer, lending validity to the assumption that threat actors may hail from these countries.
Purchasing this infotealer is likewise really simple. It is available through Telegram, and a lifetime subscription costs roughly $1,199. Monthly subscriptions can cost as much as $199 per month, confirming that the malware as a service sector is booming at the expense of cybersecurity worldwide.
It will be interesting to observe how security experts deal with this new infostealer, as it has the potential to cause massive disruption. The potential for harm is so great that the Meduza Stealer could set off a chain reaction that makes it easier to steal finances and log in credentials on the internet.
Uptycs advises that you use strong passwords, be cautious when downloading files, frequently update your computer and any software, and stay away from strange browser extensions in order to prevent falling victim to The Meduza Stealer malware.