New Python-Based Snake Info Stealer Spreading Through Facebook Messages

New Python-Based Snake Info Stealer Spreading Through Facebook Messages

March 7, 2024 at 03:33AM

Threat actors are using Facebook messages to distribute the Python-based information stealer called Snake, aiming to capture sensitive data like credentials and cookies. The malware is designed to transmit harvested credentials to platforms like Discord, GitHub, and Telegram. It also targets Vietnamese users and reflects a concerning rise in account takeover incidents on Meta’s platforms.

Based on the meeting notes, it appears that threat actors are using Facebook messages to distribute a Python-based information stealer called Snake. This malware is designed to capture credentials and sensitive data from unsuspecting users. The stolen information is then transmitted to various platforms such as Discord, GitHub, and Telegram.

The campaign involves sending seemingly harmless RAR or ZIP archive files to potential victims, which, when opened, activate the infection sequence. The malware has different variants and is capable of gathering data from various web browsers, including Cốc Cốc, indicating a focus on the Vietnamese community.

The harvested information, which includes credentials and cookies, is exfiltrated in the form of a ZIP archive via the Telegram Bot API. Additionally, the malware is designed to extract cookie information specific to Facebook, suggesting that the threat actor aims to hijack accounts for their own purposes.

It’s also worth noting that Meta has faced criticism in the U.S. for failing to assist victims of hacked accounts, and there has been a rise in account takeover incidents. Moreover, threat actors are using a cloned game cheat website, SEO poisoning, and a GitHub bug to trick individuals into running Lua malware. This malware exploits a vulnerability on GitHub for command-and-control (C2) communications.

If you need more specific information on particular aspects of the meeting notes, please let me know.

Full Article