Cybersecurity firm Trend Micro has identified a previously unknown malware strain named Phemedrone Stealer.
This malware exploits a now-patched security flaw in Microsoft Windows, explicitly targeting web browsers and extracting data from crypto wallets. The Texas-based firm's report reveals that Phemedrone Stealer is not limited to crypto-related information; it also harvests data from messaging apps such as Telegram, Steam, and Discord.
Beyond Data Theft
Cybersecurity experts have noted that Phemedrone Stealer goes beyond traditional data theft methods.
According to Crypto News, in addition to extracting sensitive information, the malware captures screenshots and collects comprehensive system details, including hardware specifications, location data, and operating system information. This multifaceted approach underscores the sophistication of modern cyber threats as threat actors continually evolve their tactics.
The stolen data is transmitted to the attackers through Telegram or a command-and-control (C&C) server. Trend Micro highlights that the vulnerability stems from the absence of checks on Microsoft Defender and related prompts on Internet Shortcut (.url) files. Threat actors exploit this loophole by creating .url files, initiating the download and execution of malicious scripts, and effectively bypassing Windows Defender SmartScreen warnings and checks.
Despite the security patch released by Microsoft, Trend Micro warns that an increasing number of malware campaigns, including those distributing the Phemedrone Stealer payload, continue to exploit this security gap. The exact scale of stolen crypto or private data due to Phemedrone Stealer remains unclear.
Cybersecurity Efforts Mitigate Financial Impact
In 2023, the De.Fi REKT database recorded a concerning 455 incidents, with the largest hack amounting to $231 million, attributed to Multichain.
According to Trend Micro, despite the alarming cumulative total of $2 billion, cybersecurity experts and white hat hackers managed to recover approximately $200 million from the overall sum. This indicates that while the cyber threat landscape is evolving, concerted efforts from cybersecurity professionals contribute significantly to mitigating the financial impact of malicious activities, offering a glimmer of resilience against cyber threats.
Photo: Markus Spiske/Unsplash


Bain Capital Exits Kioxia After AI-Fueled Valuation Surge
FxWirePro- Major Crypto levels and bias summary
SpaceX Stock Draws Bullish Wall Street Coverage Ahead of Nasdaq-100 Inclusion
Meta Says States Seek $1.4 Trillion in Penalties Over Teen Social Media Addiction Lawsuit
Samsung Q2 Profit Hits Record on AI Memory Boom as Shares Tumble
Apple Sues OpenAI, Former Employees Over Alleged Trade Secret Theft
Samsung Chairman Lee Jae-yong Expected to Meet Nvidia CEO Jensen Huang on AI and Chip Partnership
BTCUSD Bullish Breakout: Clears 800-EMA After Consolidation, Buy Dips Toward $74,900
SK Hynix’s $28B U.S. IPO Draws Strong Demand as AI Chip Boom Fuels Investor Interest
ETHUSD Bullish Momentum: Follows BTC Above All EMAs, Buy Dips Near $1750 Targeting $2300
FxWirePro- Major Crypto levels and bias summary
LG Energy Solution Q2 Profit Plunges 77% Despite Revenue Growth on Weak EV Demand
Nvidia Invests $500M in Firmus Technologies Ahead of Planned ASX IPO
SK Hynix’s $28 Billion U.S. Share Sale Draws Massive Demand Amid AI Chip Boom 



