In a recent discovery, researchers in the field of cybersecurity have identified a new method of attack being utilized by cybercriminals to steal users’ accounting data directly through web browsers. The method involves tricking victims into entering their sensitive information on legitimate websites, which is then stored within the browser and can easily be stolen using malicious programs.
This new technique was first observed towards the end of August and is currently being actively deployed through the use of the Stealc malware, often distributed through the Amadey loader.
What sets this method apart is the use of a script coded in Autoit, a unique programming language known for its ability to obfuscate processes. This makes it particularly handy for cybercriminals looking to create and disseminate harmful software.