January 18, 2024 at 11:03AM
Infostealer malware poses a significant risk to corporate information security by stealing credentials, cookies, and other data, leading to data breaches and ransomware distribution. Leaked credentials from breaches and infostealers are a substantial threat, prompting organizations to monitor and defend against them. Flare offers a solution to detect and mitigate these risks.
From the provided meeting notes, it is evident that infostealer malware and leaked credentials present significant risks to corporate information security. These risks include the theft of credentials saved in browsers, distribution of leaked credentials on the dark web, and the potential for threat actors to access corporate resources through session hijacking attacks.
The meeting notes also highlight the different tiers of leaked credentials, with tier 1 originating from third-party breaches, tier 2 stolen directly from users through infostealer malware, and tier 3 posing extreme risk due to the presence of active session cookies.
The notes provide recommendations for defending against these risks, including monitoring leaked credentials databases, requiring password resets, and implementing multi-factor authentication using authenticator apps.
The presentation is sponsored and written by Flare, a platform that monitors leaked credentials and provides robust detection for corporate employee credentials across various sources.
Overall, the meeting notes emphasize the need for organizations to proactively address the threat posed by infostealer malware and leaked credentials and suggests strategies to mitigate these risks.