According to Kaspersky Digital Footprint Intelligence, in 2023 the malicious RedLine caused an infection of 55% of the devices in the world affected by stalemate attacks.
Stylers are programs that can steal the personal data of users, including logins, passwords, and information about bank cards. Since 2020, Redline has been actively used by attackers and, as of the current year, participated in 51% of such incidents.
Over the past 4 years, more than 100 varieties of stylers have been identified. Along with Redline, a significant share of incidents is Vidar (17%) and Raccoon (about 12%). The growth of the number of new families of stylers has been noticeable since 2021, increasing from 4% to 28% to 2023.
Distribution of the number of devices of devices by type of styler in 2020-2023
Lumma is a relatively new styler that appeared in 2022, and by 2023 is already involved in more than 6% of cases of infection. The program has become available in the Malicious Service model (Ransomware-AS-A-Service, Raas), which allows users even without special technical skills to attack a fee. Lumma, like other styles, spreads through e-mail, YouTube, and spam campaign on Discord.
The dynamics of the use of the most common stylers in 2020-2023
Data stolen with the help of stylers often end up in the darknet, posing a threat to cybersecurity for both ordinary users and businesses.