Cypress Stealer
The Cypress Stealer is a threatening infostealer that is being promoted and sold on hacking forums actively. It is not uncommon for malware developers to profit from their projects by selling them to the highest bidder. In the case of the Cypress Stealer, the authors have decided to make it very affordable by only asking for $100 via the customer's preferred cryptocurrency. In exchange, they receive a fully developed version of the Cypress Stealer, which can be operated through a pre-made Telegram bot. This means that the attackers do not even need to worry about setting up a control server or figuring out a way to exfiltrate stolen information.
Buyers of the Cypress Stealer will be able to collect the following information from the infected machines:
- Logins, cookies, and other data from popular browsers like Chrome (and Chromium-based browsers,) Firefox, Microsoft Edge and Opera.
- Data from email clients like Outlook and Thunderbird.
- Session files and data from Nord VPN, ProtonVPN and OpenVPN.
- Data from popular FTP clients like FileZilla.
- Files used by Discord, Steam and Origin sessions.
Needless to say, the Cypress Stealer can be a very threatening threat considering its long list of features, as well as the low cost of entry. Many cybercriminals may end up employing it in their future attacks, and protecting your system against it is a must. Thankfully, stopping an infostealer attack requires nothing more than using an up-to-date anti-malware software suite.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.