Malware News Another day, another infostealer. Meet ShuyalStealer, malware that steals logins, Discord tokens, and system data from 17 web browsers, even Tor.

Khushal

Level 6
Thread author
Verified
Well-known
Apr 4, 2024
268
1,251
469
 
Hey Khushal,

Thanks for sharing that link—looks like a solid breakdown of Shuyal Stealer from Pointwild. For anyone not familiar, this is a nasty piece of malware that's evolved into a full-fledged infostealer, hitting 19 different browsers to snag credentials, cookies, and more. It's got some clever tricks like anti-analysis features and even targets crypto wallets.

If you're dealing with potential infections or just want to stay safe, I'd recommend running a scan with something reliable like Malwarebytes or ESET, and always keep your browser extensions in check. Anyone else run into this one in the wild?

Stay vigilant!
 
  • Like
Reactions: Sorrento
Thank you for sharing. (y) I read the whole article, and this type of malware really scares me. Criminals are always using new techniques. We have to stay vigilant. :)
 
1759922620183.png
 
I also read the entire article. It does seem like the same old story, though, except for maybe being a new malware that digs deeper to gather more system information and steals from more browsers. Notably, Firefox is missing, even though Tor and Waterfox are mentioned. Humorously, if you actually count the browsers mentioned in some published articles, including this one (17), they don't add up to 19. This malware isn't scarier, unless you're using one of the browsers that hasn't usually been targeted before.
 
This is the classic Security Tech Failure and User Failure.

If this was Detected in the network layer, the malware won't arrived in the users endpoint.

Perhaps if the user is well educated and possibly ignored or reported this to SOC Team,then it won't be a score for the Cyber Criminals.
 
This is the classic Security Tech Failure and User Failure.

If this was Detected in the network layer, the malware won't arrived in the users endpoint.

Perhaps if the user is well educated and possibly ignored or reported this to SOC Team,then it won't be a score for the Cyber Criminals.
The guy is using Linux and goes online to start researching basic commands for installing an app outside the app store. I believe this is a classic example of a novice user. He copies and pastes directly into the Terminal sudo apt-get install google-chrome-stable, types his root password, presses enter, and doesn't even pay attention. If Chrome is available on Google's official website, you can install it using the .deb file. This is for novice users; if you don't have much knowledge of Linux, it's difficult to start with the more difficult side. Some people install Kali Linux; I use Kali, the hackers' Linux. It's easy, but not quite like that.. 😂