⚠️ Threat alert: Golden Chickens unleashes TerraStealerV2 & TerraLogger 🤖🐔
🔥 What’s new:
🕵️♂️ TerraStealerV2 steals browser creds, crypto wallets & extension data
⌨️ TerraLogger logs keystrokes via OCX payloads for future exfiltration
🔄 Both are actively developed — expect rapid feature additions
🔍 Why it matters:
🚫 OCX payloads evade many AV solutions
🔐 Stolen credentials = instant account takeover
💱 Crypto wallets at risk of clean sweeps
🛠️ Action steps:
🛑 Block unsigned OCX/ActiveX modules at the endpoint
🔒 Enforce strict application whitelisting policies
📊 Deploy behavioral analytics to detect unusual loads & registry changes
🔄 Update threat intel feeds & IOC lists in SIEM/EDR tools
🛡️ Stay ahead of evolving MaaS threats by hardening your OCX defenses and continuously monitoring for stealth injection techniques.
#CyberSecurity #Malware #GoldenChickens #ThreatIntel #EndpointSecurity #OCX #MaaS #security #privacy #cloud #infosec
https://thehackernews.com/2025/05/golden-chickens-deploy-terrastealerv2.html
Certains des cybercriminels russes les plus dangereux viennent de voir leur revendeur de logiciels malveillants démasqué :
"Jack est le fournisseur d'un logiciel malveillant appelé #GoldenChickens, utilisé par certaines des bandes de cybercriminels russes soupçonnées d'avoir causé plus d'un milliard de dollars de dommages en piratant de grandes entreprises aux États-Unis et en Europe"
"Ils espèrent que l'identification de ce trentenaire fera fuir ses clients"
American sleuths claim what might be a major cyber scalp by uncovering the creator of the ‘Golden Chickens’ malware that’s tied to over $1 billion in damages. They’re hopeful it will disrupt two of Russia’s most profitable hacking crews.
The Threat Codex
Brian Greenberg 
x0rp'