Skip to main content
← All Articles

Tag

#credential theft

16 articles

Advertisement

Phantom Stealer: Fileless Credential Theft & Evasion
HIGH
Malware

Phantom Stealer: Fileless Credential Theft & Evasion

Phantom Stealer uses fileless execution and advanced anti-analysis to steal browser credentials. Learn its TTPs and how to detect this evasive malware.

Runtime Rebel Intel
5 min read·Jun 17, 2026
MA
HIGH
Malware

Infostealers: Millions of Devices Compromised for Credential Theft

Infostealers are increasingly enabling ransomware and cybercrime operations by compromising millions of devices to harvest credentials and sensitive data.

Runtime Rebel Intel
4 min read·Jun 11, 2026
Megalodon Malware: GitHub Repo Compromise & Secret Theft
HIGH
Supply Chain

Megalodon Malware: GitHub Repo Compromise & Secret Theft

Analysis of the Megalodon malware campaign, which compromised over 5,500 GitHub repositories in six hours to steal developer credentials and sensitive secrets. Learn how

Runtime Rebel Intel
4 min read·May 26, 2026
TH
HIGH
Threat Intel

DBIR 2026: Vulnerability Exploitation Now Top Breach Vector

Verizon's 2026 DBIR reveals vulnerability exploitation as the leading breach vector, surpassing credential theft. AI accelerates attacks, patching delays persist, and

Runtime Rebel Intel
4 min read·May 20, 2026
TH
INFO
Threat Intel

Microsoft Edge: Hardening Against Cleartext Password Exposure

Microsoft Edge will no longer load cleartext passwords into memory at startup, mitigating a significant local credential access risk for users.

Runtime Rebel Intel
4 min read·May 15, 2026
MA
HIGH
Malware

PCPJack Worm Steals Cloud Credentials, Cleans TeamPCP Access

New PCPJack worm actively targets exposed cloud infrastructure, stealing credentials and removing existing TeamPCP infections. Understand its TTPs and mitigation.

Runtime Rebel Intel
4 min read·May 7, 2026
MA
HIGH
Malware

Stealthy Quasar Linux (QLNX) Malware Targets Developers

New Quasar Linux (QLNX) malware is infecting developers' Linux systems, utilizing rootkit, backdoor, and credential-stealing techniques. Learn to detect and mitigate.

Runtime Rebel Intel
5 min read·May 6, 2026
PyTorch Lightning 2.6.2/2.6.3 Compromise: Credential Theft Via Supply Chain
HIGH
Supply Chain

PyTorch Lightning 2.6.2/2.6.3 Compromise: Credential Theft Via Supply Chain

Threat actors injected malicious code into PyTorch Lightning versions 2.6.2 and 2.6.3 on PyPI, enabling credential theft via a supply chain attack. Urgent action

Runtime Rebel Intel
5 min read·Apr 30, 2026
SU
HIGH
Supply Chain

TeamPCP Supply Chain: Checkmarx KICS, Bitwarden CLI, xinference PyPI Attacks

TeamPCP resumes supply chain attacks with new compromises targeting Checkmarx KICS, Bitwarden CLI, and xinference PyPI. UNC6780 credential theft campaign continues.

Runtime Rebel Intel
5 min read·Apr 27, 2026
TH
HIGH
Threat Intel

UNC6783 Leverages BPOs to Steal Corporate Zendesk Tickets

New threat actor UNC6783 targets Business Process Outsourcing (BPO) providers to gain access to client Zendesk support tickets, risking sensitive data.

Runtime Rebel Intel
4 min read·Apr 9, 2026
TH
HIGH
Threat Intel

Routine Access Powers Intrusions: VPNs & RMM Tools Abused

Blackpoint Cyber's report reveals modern intrusions leverage routine access via compromised credentials, VPN abuse, RMM tools, and social engineering, not exploits.

Runtime Rebel Intel
4 min read·Apr 1, 2026
DeepLoad Malware Leverages AI for Evasion and Credential Theft
HIGH
Malware

DeepLoad Malware Leverages AI for Evasion and Credential Theft

DeepLoad, an AI-powered malware, uses massive junk code to evade detection while stealing credentials. Learn its TTPs and mitigation strategies.

Runtime Rebel Intel
4 min read·Mar 31, 2026