New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth

A new information stealer, likely a variant of RedLine Stealer, has emerged, utilizing Lua bytecode for enhanced stealth. RedLine Stealer, documented since March 2020, targets cryptocurrency wallets, VPNs, and browsers for sensitive data. McAfee found the malware abusing GitHub, disguising itself as game cheats in ZIP files, leveraging Microsoft repositories. The malware, spread via MSI installers, establishes persistence and communicates with a command-and-control server, functioning as a backdoor. This technique bypasses traditional script detections, posing a threat to gamers and potentially other users. Concurrently, cybersecurity experts warn of a surge in gaming-related malware, like trap phishing, exploiting trust in fake Web3 gaming projects. Additionally, enterprise environments face diverse malware campaigns, including PikaBot and NewBot Loader. Vigilance and updated security measures are crucial amid evolving cyber threats.

Read more

Sign up to receive daily content in your inbox

We don’t spam! Read our privacy policy for more info.

Share This Article

Leave Comment

Your email address will not be published. Required fields are marked *

Daily Newsletter

Subscribe to our free daily newsletter to get the latest summarized updates