Tag: malware-as-a-service

a computer desk with two monitors and a laptop
Security

CrystalRAT is not just prankware — Telegram-marketed MaaS that pairs RAT access, crypto clippers, and disruptive “Rofl” tricks

CrystalRAT (aka CrystalX RAT) is being sold openly on Telegram as an easy-to-use malware package, but calling it merely “prankware” misses the point: it is a modular malware-as-a-service that combines full remote access, clipboard-based cryptocurrency theft, and nuisance/psychological disruption into a single commercially marketed toolkit. Why the “prank” label understates the risk Security vendors and […]

admin 
a skeleton sitting at a desk with a laptop and keyboard
Security

When Chrome briefly exposes its master key: VoidStealer v2.0 uses debugger hardware breakpoints to extract it

VoidStealer v2.0 demonstrates a concrete condition under which Chrome’s Application-Bound Encryption (ABE) can be bypassed: if the browser places the v20_master_key into user-mode registers during decryption, a debugger that sets hardware breakpoints can capture that key without SYSTEM privileges or code injection. How VoidStealer v2.0 captures the master key during Chrome startup The attack starts […]

admin