🟠 High | Source: The Hacker News
A joint law enforcement and private sector operation coordinated by Europol has dismantled the infrastructure behind Amadey and StealC, two prolific malware families used to steal credentials and enable ransomware and financial fraud. The operation recovered approximately 27 million stolen credentials. Partners including Bitdefender, Bitsight, ESET, and Microsoft contributed to taking down the criminal ‘assembly lines’ that fed downstream attacks.
Security Architect’s Take: Review your threat intelligence feeds and identity monitoring for any credentials associated with your organisation in the recovered dataset — contact your CIEM or SIEM vendor about ingesting indicators from this operation. Additionally, audit cloud workloads and endpoints for StealC or Amadey indicators of compromise, as stolen credentials from these campaigns are frequently used to pivot into cloud environments via valid account abuse.
Original advisory: Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered