RedLine Stealer, The New Malware Seeking To Steal Confidential Data

The cybersecurity company Bitdefender has detected a new malware campaign that seeks to steal confidential data from the computers it accesses. At the moment, 1.3% of the total number of victims affected by this malware are Spanish.

The malware distributed is RedLine Stealer and it is delivered through the RIG Exploit Kit, a tool that allows cybercriminals to exploit vulnerabilities and which is spread through advertisements inserted in legitimate web pages.

RedLine Stealer is marketed on underground forums and distributed at low cost. Once it is activated, it analyzes the computer it is attacking, identifying the user’s name, type of hardware, installed browsers and antivirus programs used. It then proceeds to leak data such as passwords, VPN session identifiers, credit card numbers, cryptocurrency wallets and any other type of confidential data. This data is then forwarded to the attacker’s remote server.

Once this data is analyzed, the process of taking advantage of it begins, using it to obtain more information from the user or directly to get hold of their funds through their credit card or by extracting the cryptocurrencies stored in their virtual wallet.