An alarming number of 26 million devices have been compromised by a type of malware known as infostealer, which is specifically designed to capture sensitive information such as bank card data and passwords. This figure includes 9 million devices infected in just 2024, indicating a significant threat to users worldwide.
According to cybersecurity firm Kaspersky, an estimated 2.3 million bank card details were leaked on the dark web during 2023 and 2024, with every 14th infostealer infection leading to stolen bank data. Although only about 1% of all bank cards issued globally have been compromised, a staggering 95% are considered “technically valid,” raising concerns about the potential for misuse.
Infostealer malware is not limited to stealing bank card numbers alone; it also targets user credentials, including passwords. This information, alongside cookies, is disseminated within the dark web community, often leading to severe consequences for unsuspecting victims.
Many users inadvertently download this malware, as it often masquerades as legitimate software, such as game cheats. Once a victim runs the malicious file, the infection can quickly spread to other devices through various channels, including phishing links and infected email attachments.
In 2023, Redline emerged as the most prolific infostealer, accounting for 34% of infections. Meanwhile, another infostealer named Risepro saw its share of infections increase dramatically from 14% to 23% within the same timeframe.
Stealc, a newer threat, also gained traction, growing from a 3% to a 13% share over the year. If you suspect you are a victim of infostealer malware, it is crucial to monitor your bank accounts for unusual activity.
Reissuing your bank card, changing passwords, and enabling two-factor authentication are vital steps in protecting your sensitive information. Always be vigilant for phishing attacks and consult your bank if you receive suspicious notifications.
Kaspersky emphasizes the importance of conducting regular security scans on your devices as a preventive measure.