"Over 330 Million Credentials Compromised by Infostealers"

According to security researchers at Kela, infostealers became one of the “most significant initial access vectors” in the threat landscape last year, claiming to find over 330 million compromised credentials linked to the malware.  The researchers noted that the hundreds of millions of compromised credentials were linked to infostealer activity on at least 4.3 million machines.  It was pointed out that the compromised credentials provide access to a range of sensitive corporate services, including cloud solutions, CMS, email, and user authentication.  In addition to the credentials obtained via infostealers, the researchers said that they observed 3.9 billion credentials shared in the form of credentials lists (ULP files), which are mainly obtained from infostealer logs, as well as third-party breaches and phishing.  The researchers found that the top three infostealer malware strains, Lumma, StealC, and RedLine, were responsible for over 75% of infected machines.  The researchers predict a surge in infostealer activity in 2025 thanks to the malware-as-a-service (MaaS) model and the increasing sophistication of the malicious code.

Infosecurity Magazine reports: "Over 330 Million Credentials Compromised by Infostealers"