Attention: New malware threatens your data - here's how to protect yourself now!

Attention: New malware threatens your data - here's how to protect yourself now!

The digital world is becoming more and more dangerous - this is currently shown by the example of the almost invisible malware called “Atomic Infostealer”. Security researchers at LastPass are now making it clear that this new threat is specifically targeting macOS users, stealing a wide range of personal information. The malware can steal both login credentials and crypto wallet information and is primarily distributed via fake GitHub repositories. As Chip reports, cybercriminals use a perfidious technique called SEO Poisoning to place their infected software projects at the top of Google and Bing search results.

Users who are lured to the deceptively designed sites often believe that they are downloading legitimate software. However, they actually silently install malware that uses Terminal commands. Technically experienced people who like to obtain software directly from GitHub and also execute shell commands manually are particularly at risk. This makes them an easy target for the attackers, who constantly update their repositories to avoid bans.

Biggest security threats in focus

A particularly worrying aspect is the discovery of an unprotected database containing more than 184 million login credentials. This database, uncovered by security researcher Jeremiah Fowler, contains plaintext usernames and passwords from well-known platforms such as Google, Apple, Microsoft, Facebook and many more. Fowler has classified the database as unencrypted and accessible to anyone, making it particularly dangerous. As SecureWorld informs, this InfoStealer malware could be responsible for collecting sensitive data from infected systems.

The potential impact is serious. Cyberattacks such as credential stuffing or account takeovers could increase as dissenters use this stolen data to gain unauthorized access. Businesses are also affected as they may have to deal with a rise in corporate espionage and phishing campaigns. Fowler therefore strongly recommends regularly deleting old emails containing sensitive information and using secure cloud storage solutions for confidential files.

Tips for protecting your data

The best protection against such threats lies in a proactive approach to cybersecurity in the future. Both LastPass and Fowler researchers offer some useful recommendations. This includes increased caution when using password managers, checking repositories and avoiding terminal commands if you don't even fully understand them. It is also advisable to only obtain software through official distribution channels and to use security solutions that can detect data leaks.

• Regelmäßige Aktualisierung und Diversifizierung von Passwörtern
• Aktivierung der Zwei-Faktor-Authentifizierung (2FA)
• Überwachung ungewöhnlicher Aktivitäten
• Schulung zu Cybersecurity-Themen
• Implementierung robuster Sicherheitslösungen wie Antivirus-Software

At a time when data has become one of the most valuable currencies, it is essential to be aware of the threats and act accordingly. “Atomic Infostealer” is not an isolated case, and as we see, cybercriminals do not stop at users’ personal information. Having a good handle on the digital world can help you protect your data and money.