StrelaStealer Campaign Targets Outlook Users In A Credentials-Stealing Attempt

A widespread StrelaStealer malware campaign has affected organizations in the United States and Europe, aiming to pilfer email credentials. Initially identified in November 2022, StrelaStealer targets Outlook and Thunderbird users. It employs a polyglot file infection method to evade detection and has expanded its reach beyond Spanish-speaking users to encompass individuals in the U.S. and Europe. Distributed via phishing campaigns, its prevalence surged notably in November 2023, with over 250 organizations targeted on some days. This trend persisted into 2024, with a significant spike observed by Unit42 analysts between late January and early February. Read more...