Home » Breaking Computer security Cyber Security data security Latest Cybersecurity News Linux security Mac security Windows security

441K RedLine Malware affected accounts are included by Have I Been Pwned

William Marshal Posted On December 31, 2021
0


RedLine malware

If you’re wondering whether your email account is compromised by RedLine #malware, you can check the same with ‘Have I Been Pwned‘ as the website now added 441,000 compromised accounts.

What is RedLine malware capable of?

RedLine malware is actively used for stealing information, and is distributed via phishing campaigns with malicious documents. RedLine malware is capable of stealing cookies, credit card details, username, passwords, and autofill forms in browsers.

It can even tap into credentials that are stored in VPN and FTP clients, breach cryptocurrency wallets, execute remote commands and download any malicious software.

The data is later transmitted to the external server as logs for later user.  This data can also be sold in the dark web for making money or other sinister intent.

RedLine malware

Digging into RedLine malware logs

A security researcher called Bob Diachenko, identified a server which exposed the logs of RedLine malware. These logs were collected in September and August 2021, containing around 6 million logs. The researcher also found that the credentials included the recent breach of LastrPass emails. The server is still active and accessible but isn’t used by the cyber criminals now as there is no difference in the logs.

How to mitigate RedLine malware account compromise

If your email address is breached by Redline malware logs, you need to update all your passwords including the ones associated with your VPN and other email accounts. Also, you need to take care of your cryptocurrency wallets as it is also compromised. You need to transfer the currencies to a different account as soon as possible.

To detect if  RedLine malware has compromised your system, you can use a antivirus software to detect the malware and remove it at once.

Subscribe to our newsletter for daily alerts on cyber events, you can also follow us on Facebook, Linkedin, Twitter and Reddit.

You can reach out to us via Twitter or Facebook, for any advertising requests.

Share the article with your friends




Author

William Marshal

William has been one of the key contributors to 'The Cybersecurity Times' with 9.5 years of experience in the cybersecurity journalism. Apart from writing, he also like hiking, skating and coding.

Leave A Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.