Cyber Security News

Infostealer Shut Down After Source Code Was Leaked

Cyware

### #BansheeStealer #MalwareLeak #MacOSThreats

Summary: The source code for the macOS malware Banshee Stealer has been leaked and published on GitHub, leading to the shutdown of its operations by its developers. This malware, which targeted sensitive data, was previously promoted by Russian hackers.

Threat Actor: Russian hackers | Russian hackers
Victim: Banshee Stealer users | Banshee Stealer users

Key Point :

  • Source code for Banshee Stealer was leaked and published by VXunderground on GitHub.
  • The malware was capable of stealing browser data, cryptocurrency wallets, and more.
  • Following the leak, the operators of Banshee Stealer ceased their operations.
  • Banshee Stealer targeted both x86_64 and ARM64 architectures on macOS.
  • Prior reports indicated its data exfiltration capabilities were limited by its basic design.

Source code for Banshee Stealer was published on GitHub.

The macOS malware-as-a-service Banshee Stealer has been taken down following the exposure of its source code.

According to Security Affairs, the source code was leaked online, archived and published it on GitHub by VXunderground. It was also disclosed that the operators behind Banshee Stealer have shut down their operations after the data leak.

In August 2024, Russian hackers promoted BANSHEE Stealer, a macOS malware targeting x86_64 and ARM64, capable of stealing browser data, crypto wallets, and more.

This comes months after Banshee Stealer was reported by Elastic Security Labs to enable extensive system, cryptocurrency wallet, browser, and browser extension data compromise.

Although its data exfiltration capabilities were watered down by its less than advanced composition.


Written by

Dan Raywood

Dan Raywood
Senior Editor
SC Media UK

Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.

He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.

Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.

Source: https://insight.scmagazineuk.com/infostealer-shut-down-after-source-code-was-leaked