Companies have been cautioned about the growing threat of cybercriminals using "information stealers" to target their devices, according to an expert. Ravin Prasad, Chief Executive Officer of Cybernetic Global Intelligence (CGI), warned that this type of malware is designed to steal user credentials and system information, which cybercriminals often exploit for financial gain.
Prasad noted that information stealers have been increasingly observed in cybercrime attacks against various organizations and sectors worldwide. He emphasized the importance for organizations, particularly those allowing remote access through employees, contractors, or Bring Your Own Device (BYOD) policies, to be vigilant against these threats.
Cybercriminals deploy information stealers using various methods, including phishing emails, pirated software downloads, search engine optimization techniques, malicious advertisements, and harmful links on social media platforms. Prasad highlighted that devices used for both professional and personal purposes are particularly vulnerable due to user behavior and less stringent security controls.
He explained that information stealers are an attractive option for cybercriminals, especially those with limited technical skills. Some criminals even offer these tools through a "Malware-as-a-Service" model, charging a monthly subscription fee for their use.
Prasad warned that information stealer infections often precede more significant cybersecurity incidents. Cybercriminals use these tools to collect user credentials, which are then exploited to gain unauthorized access to corporate systems and sensitive data. This poses a serious threat to the security and operational integrity of organizations globally, including those in Papua New Guinea. #techPacific
Also read