Rising Tide of Credential Leaks & Infostealer Attacks

A growing number of cyber incidents now come from infostealer malware instead of large company breaches. These programs silently collect passwords browser data and tokens from infected devices and send them to criminal servers. The stolen credentials are later sold or reused in massive credential stuffing campaigns

Recent leaks have exposed over 180 million email and password pairs gathered through these attacks. Tools like Lumma RedLine and Raccoon are behind most of them spreading through fake software downloads and phishing links. Even after law enforcement takedowns new versions keep appearing showing how hard it is to stop this threat

Experts urge users to use unique passwords enable multifactor authentication and avoid downloading cracked or unofficial apps. Credential hygiene and awareness remain the best defense against this fast-growing wave of infostealer activity

Reference and sources: nypost