Jupyter Infostealer
The Jupyter Infostealer is believed to be the product of Russian cybercriminals who are using the project in their own campaign, apparently. Often, malware creators prefer to sell infostealers to like-minded individuals, but the criminals behind the Jupyter Infostealer project are determined to keep their software private and continue to upgrade it gradually. The first samples of the Jupyter Infostealer were identified in fake binaries posing as installers for popular software. Another campaign aimed to spread the Jupyter Infostealer via corrupted email attachments, which were executable files disguised to look like Microsoft Office documents.
The Jupyter Infostealer Targets Web Browsers
The primary purpose of the Jupyter Infostealer is to collect data from Web browsers like Microsoft Edge, Firefox, Google Chrom and Chromium-based browsers. However, it seems that the Jupyter Infostealer has some other functionalities usually found in backdoor Trojans. For example, the Jupyter Infostealer can download and execute PowerShell scripts, download and execute files, and even inject its code in legitimate Windows processes.
Apart from trying to extend the features of the Jupyter Infostealer, its creators also are trying to make it able to avoid anti-virus software by employing different techniques to obfuscate its code and true purpose. One of the latest updates of the Jupyter Infostealer was released in the first days of November, but malware experts believe that the threat has been distributed since May 2020 actively.
Russian Hackers might be Keeping the Jupyter Infostealer for Private Use
The Command-and-Control servers of the Jupyter Infostealer are accessible via the Internet, and malware researchers identified that the majority of their IP addresses were situated in Russia. However, the control panel is password-protected and cannot be accessed to estimate Jupyter Infostealer's reach and potency.
Staying safe from ever-evolving threats like the Jupyter Infostealer is not as difficult as you may think. Keeping your computer protected by an up-to-date anti-malware application should be enough to ensure that you will never have to deal with threats like the Jupyter Infostealer. If this threat infiltrates a computer successfully, it will have the chance to exfiltrate browsing history, auto-fill data, saved credentials, and other information from the user's Web browsers.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.