The Hacker News cites Flashpoint’s “RisePro” Stealer Returns with New Updates.
“Flashpoint spotted the newly identified stealer on December 13, 2022, after it discovered several sets of logs exfiltrated using the malware on an illicit cybercrime marketplace called Russian Market.”
Flashpoint identified RisePro stealer distributed via the PrivateLoader PPI service, according to reporting by The Hacker News.
What is the RisePro malware identified by Flashpoint?
RisePro is a C++-based information-stealing malware designed to exfiltrate credentials, browser data, crypto wallets, and sensitive files.
How is RisePro being distributed in the wild?
RisePro is distributed through the PrivateLoader pay-per-install service, often masquerading as pirated software or hosted on compromised websites.
How does Flashpoint research track RisePro and PrivateLoader activity?
Flashpoint analysts correlate underground marketplace logs, malware payload delivery chains, and infrastructure overlaps, detailed in “RisePro” Stealer Returns with New Updates.
Subscribe to our weekly threat intelligence newsletter
Interested to see top news from Flashpoint hit your inbox directly? Subscribe to our newsletter to receive curated content on a bi-weekly basis.