The Raccoon Stealer malware has resurfaced with an upgraded version, ending a 6-month hiatus from hacker forums. This newly introduced 2.3.0 version is being promoted to cybercriminals, indicating a renewed effort by the developers to target unsuspecting users.
Raccoon Stealer, a well-known information-stealing malware family dating back to 2019, has been sold via a subscription model for $200/month to threat actors, enabling them to steal data from over 60 applications, including sensitive information like login credentials, credit card details, browsing history, cookies, and cryptocurrency wallet accounts.
Despite facing setbacks, such as the arrest of its primary author and the takedown of its infrastructure in October 2022, Raccoon Stealer’s developers have returned with enhanced features and improvements. These changes, driven by user feedback and evolving cybercrime trends, aim to maintain the malware’s position in the competitive info-stealing market. The upgraded version, Raccoon 2.3.0, incorporates “quality of life” enhancements and operational security (OpSec) measures, making it more user-friendly and less likely to be traced by researchers and law enforcement.
Notable additions include a quick search tool within the malware’s dashboard, enhanced protection against security-assisting bots, and a reporting system to thwart monitoring efforts by cyber-intelligence firms.
The resurgence of Raccoon Stealer highlights the ever-present threat posed by information stealers, which can lead to a wide range of cyberattacks, including data theft, ransomware, business email compromise (BEC) scams, and cyber espionage. The malware’s ability to not only steal credentials but also cookies raises concerns about its potential to bypass multi-factor authentication and breach corporate networks.
As a countermeasure, experts recommend using password managers instead of browser-stored credentials, enabling multi-factor authentication, and avoiding downloads from dubious websites. By staying vigilant and adopting these best practices, users and organizations can better protect themselves against the risks posed by Raccoon Stealer and similar malware threats.
