Attackers are leveraging the open-source tool RedTiger to create an infostealer targeting Discord accounts, payment info, and browser data. Although intended for legal use, RedTiger’s functionalities are being exploited by cybercriminals for data theft and evasion techniques. #RedTiger #DiscordTokenTheft
Keypoints
- RedTiger is an open-source Python-based penetration testing toolkit used maliciously for infostealing activities.
- The malware targets Discord account data, browser credentials, cryptocurrency wallets, and game accounts.
- Cybercriminals compile RedTiger into standalone binaries using PyInstaller and distribute them via various channels.
- RedTiger employs anti-sandbox techniques, process overload, and file creation to evade forensic analysis.
- Victims are advised to revoke tokens, change passwords, and reinstall Discord from official sources to prevent data theft.