QwixxRAT: New Remote Access Trojan Emerges via Telegram and Discord

[silversurfer]

Content source

https://thehackernews.com/2023/08/qwixxrat-new-remote-access-trojan.html

A new remote access trojan (RAT) called QwixxRAT is being advertised for sale by its threat actor through Telegram and Discord platforms.

"Once installed on the victim's Windows platform machines, the RAT stealthily collects sensitive data, which is then sent to the attacker's Telegram bot, providing them with unauthorized access to the victim's sensitive information," Uptycs said in a new report published today.

The cybersecurity company, which discovered the malware earlier this month, said it's "meticulously designed" to harvest web browser histories, bookmarks, cookies, credit card information, keystrokes, screenshots, files matching certain extensions, and data from apps like Steam and Telegram.

 

[cartaphilus]

Seeing more and more malware going after my precious cookies and other sensitive info then what software should I use or what rules should I set to protect myself? Assuming I get infected? So assume a zero day nabs me then what layers does anyone recommend in order to minimize/mitigate the compromise?

We are an ESET household.

 

[Xeno1234]

Seeing more and more malware going after my precious cookies and other sensitive info then what software should I use or what rules should I set to protect myself? Assuming I get infected? So assume a zero day nabs me then what layers does anyone recommend in order to minimize/mitigate the compromise?

We are an ESET household.

I recommend using Kaspersky paid with application control, you can lock down your browsers where no malware can access them, therefore they cant grab your passwords.
Kaspersky also has better detections that ESET and I've never seen it miss a stealer in recent times, even ones bypassing every single other AV.