"Snake, a New Info Stealer Spreads Through Facebook Messages"
According to Cybereason researchers, threat actors are using Facebook messages to spread malware called "Snake," which is a Python-based information stealer. The malware extracts credentials from the infected system and sends them to various platforms such as Discord, GitHub, and Telegram by abusing their Application Programming Interfaces (APIs). The threat actors send victims direct messages through Facebook Messenger, attempting to trick them into downloading archive files like RAR or ZIP files. The archives have two downloaders, with the final being used to install the appropriate Python information stealer variant on the victim's system. This article continues to discuss findings regarding the Snake malware.
Security Affairs reports "Snake, a New Info Stealer Spreads Through Facebook Messages"
Submitted by grigby1