More than 150 countries and territories, including the U.S., Canada, Germany, Egypt, and China, had systems facing over 10,000 attacks distributing the RedLine Stealer malware
this month, reports The Record
, a news site by cybersecurity firm Recorded Future.
Attackers behind the campaign have leveraged an Internet Explorer vulnerability, tracked as CVE-2021-26411, to deliver RedLine Stealer, which facilitates login credential exfiltration, a report from Bitdefender revealed.
"Preliminary information in our telemetry shows that the RedLine campaign was considerable. The diversity of stolen information, from crypto-coin wallets to various accounts allow its operators multiple opportunities for monetization," said Bitdefender Director of Threat Research Bogdan Botezatu. However, the number of compromised hosts may still be underestimated, according to Recorded Future Product Manager and Analyst Dmitry Smilyanets. "Based on the dataset from the past six weeks we can state that Brazil, Indonesia, India, and the U.S. were the primary targets," Smilyanets said.