all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Technical Analysis of Bandit Stealer

Add to bookmarks
June 3, 2023, 7:44 p.m. | Mallikarjun Piddannavar

Security Boulevard securityboulevard.com

Key Points


Bandit is a new information stealer that harvests stored credentials from web browsers, FTP clients, email clients, and targets cryptocurrency wallet applications.

The malware sends stolen information to a command and control server via Telegram.

Bandit implements numerous methods to detect and evade virtual machines and malware sandboxes.

Bandit has been marketed and sold as a service on underground criminal forums since April 2023.

The malware is written using the Go programming language, which has become increasingly popular …

analysis applications bandit bandit stealer browsers clients command command and control control credentials cryptocurrency cryptocurrency wallet detect email evade ftp information information stealer key key points machines malware sandboxes server stealer stolen technical technical analysis telegram virtual virtual machines wallet web web browsers

Visit resource

More from securityboulevard.com / Security Boulevard

How to Migrate from FedRAMP Rev 4 to FedRAMP Rev 5 3 hours ago | securityboulevard.com
can development evolution fedramp +9
NodeZero: Testing for Exploitability of Palo Alto Networks CVE-2024-3400 6 hours ago | securityboulevard.com
advisory alto april cve +18
USENIX Security ’23 – LibScan: Towards More Precise Third-Party Library Identification for Android Applications 8 hours ago | securityboulevard.com
access android applications authors +20
N.A. Developers Optimistic About Generative AI and Code Security 8 hours ago | securityboulevard.com
ai security america can cloud security +34
Defending Against ArcaneDoor: How Eclypsium Protects Network Devices 8 hours ago | securityboulevard.com
actor adaptive security arcanedoor asa +27
AI Adoption Prompts Security Advisory from NSA 9 hours ago | securityboulevard.com
adoption advisory ai ai adoption +26
AI Data Poisoning: How Misleading Data Is Evading Cybersecurity Protections 9 hours ago | securityboulevard.com
ai cybersecurity ai data ai data poisoning ai security attacks +12
Nemesis 1.0.0 9 hours ago | securityboulevard.com
1.0.0 august data data analysis +15
How Momentum is Building for the US Government to Play a Larger Role in Protecting … 9 hours ago | securityboulevard.com
access block building colleges +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs