Infostealer malware is one of the most significant cybersecurity threats today. This malicious software comes in various forms and operates under different names. Shockingly, some infostealers are even sold as software-as-a-service (SaaS), where hackers pay monthly fees to use them for fraud, including unauthorized access to services like Netflix.
The Infostealer Malware Economy is thriving, as highlighted by Kaspersky’s recent findings. Between the start of 2023 and the end of 2024, an estimated 25 million users were targeted by this malware. Infostealers are designed to steal sensitive data, including bank card details, passwords, and confidential files.
Stay protected and informed! Sign up for the Tech Word News Kurt Report to receive expert safety tips and the latest technology updates.
What You Need to Know
According to Kaspersky’s Digital Footprint Intelligence report, nearly 26 million devices were infected with infostealer malware between 2023 and 2024. This resulted in the leakage of over 2 million unique bank card records. Alarmingly, one in every 14 infections led to stolen bank card data. Beyond financial information, passwords, two-factor authentication codes, and other sensitive credentials were also compromised.
Kaspersky analysts noted a sharp rise in infections in 2024, driven by specific malware variants. For instance:
- Risepro, which accounted for just 1.4% of infections in 2023, surged to 22.45% in 2024.
- Scalc, a newer threat detected in 2023, increased its share from 2.65% to 13.33%.
- Redline remained the most widespread infostealer, responsible for 34.36% of all infections.
The Rapid Growth of Infostealer Malware
By August 2024, researchers estimated that 15.9 million devices were infected in 2023. By March 2025, this number climbed to 16.49 million, exceeding earlier predictions by 3.69%. New log files from 2023 continue to appear on dark web platforms, suggesting that the actual infection count was even higher. Since March 2025, over 9 million infections from 2024 have been observed, and the final number is expected to surpass 2023’s figures, albeit by a narrow margin.
6 Ways to Protect Your Bank Cards and Passwords
With infostealer malware infections on the rise, it’s crucial to safeguard your sensitive information. Here are six effective strategies:
- Install Reliable Antivirus Software: Use and regularly update robust antivirus software on all your devices. This can detect and prevent malware infections, alert you to phishing emails, and protect against ransomware.
- Use Virtual Cards for Online Payments: Generate virtual cards through your bank or services like Privacy. These temporary cards minimize exposure in case of a data breach.
- Enable Transaction Alerts and Spending Limits: Set up real-time notifications for transactions and daily spending limits to quickly spot unauthorized activity.
- Avoid Saving Card Details in Browsers: Infostealers often target auto-filled data in browsers like Chrome, Edge, and Firefox. Decline “Save Payment Information” prompts and use secure password managers instead. Consider additional measures like two-factor authentication, facial ID, or Touch ID.
- Strengthen Your Passwords: Use strong, unique passwords and change them regularly. A password manager can help generate and store them securely.
- Invest in Personal Data Removal Services: While no service can remove all your data from the internet, these tools can help automate the process of removing your information from hundreds of sites continuously.
Kurt’s Key Takeaways
Infostealers pose a significant and widespread threat to online security. Often disguised as legitimate applications or employing social engineering tactics, they can deceive even the most cautious individuals. To stay safe:
- Exercise caution when browsing, downloading apps, or making online transactions.
- Use tools like password managers and antivirus software to enhance your security.
