Kaspersky Lab has shown significant development in the stealer industry.
According to an analysis Kaspersky Digital Footprint Intelligence, in 2023, RedLine malware caused infection of 55% of devices in the world affected by stealer attacks.
Stealers are a type of software that can steal users personal data, including usernames, passwords, and bank card information. For example, since 2020, RedLine has been actively used by intruders and as of this year was involved in 51% of such incidents.
Over the past 4 years, more than 100 varieties of stealers have been identified. Along with RedLine, Vidar (17%) and Raccoon (about 12%) account for a significant share of incidents. The growth in the number of new stealer families is noticeable from 2021, increasing from 4% to 28% by 2023.
Distribution of the number of device infections by stealer type in 2020-2023
Lumma is a relatively new stealer, introduced in 2022, and by 2023 is already involved in more than 6% of infections. The program is now available on the Ransomware-as-a-Service (RaaS) model, which allows users to perform attacks for a fee even without special technical skills. Lumma, like other stealers, is distributed via email, YouTube, and spam campaigns on Discord.
Dynamics of using the most common stealers in 2020-2023
Data stolen with the help of stealers often ends up on the darknet, posing a cybersecurity threat to both ordinary users and businesses.
According to an analysis Kaspersky Digital Footprint Intelligence, in 2023, RedLine malware caused infection of 55% of devices in the world affected by stealer attacks.
Stealers are a type of software that can steal users personal data, including usernames, passwords, and bank card information. For example, since 2020, RedLine has been actively used by intruders and as of this year was involved in 51% of such incidents.
Over the past 4 years, more than 100 varieties of stealers have been identified. Along with RedLine, Vidar (17%) and Raccoon (about 12%) account for a significant share of incidents. The growth in the number of new stealer families is noticeable from 2021, increasing from 4% to 28% by 2023.
Distribution of the number of device infections by stealer type in 2020-2023
Lumma is a relatively new stealer, introduced in 2022, and by 2023 is already involved in more than 6% of infections. The program is now available on the Ransomware-as-a-Service (RaaS) model, which allows users to perform attacks for a fee even without special technical skills. Lumma, like other stealers, is distributed via email, YouTube, and spam campaigns on Discord.
Dynamics of using the most common stealers in 2020-2023
Data stolen with the help of stealers often ends up on the darknet, posing a cybersecurity threat to both ordinary users and businesses.
Last edited by a moderator:
