Close Menu
  • Latest News
    • Market
    • Altcoins
    • Legal and Regulatory
  • Tech
    • Blockchain
    • Security and Privacy
  • Web 3
    • Web3 News
    • NFTs
    • Gaming
  • Learn
    • Education
    • Investments
    • Staking
    • Wallets and Exchanges
  • ICOs
  • Mining
  • Crypto Tools
    • Exchange Tool
  • Shop
What's Hot

Will new Uniswap protocol fee proposals drive ‘substantial UNI burn’?

July 18, 2026

Ripple Commits $250,000 to 25 Veteran-Owned Businesses Through Hire Heroes USA

July 18, 2026

Trump Teleprompter Operator Faces Trading Ban After Alleged $100K Kalshi Windfall: Report

July 18, 2026
Facebook X (Twitter) Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Facebook X (Twitter) Instagram
CryptoPulseDaily.com
  • Latest News
    • Market
    • Altcoins
    • Legal and Regulatory
  • Tech
    • Blockchain
    • Security and Privacy
  • Web 3
    • Web3 News
    • NFTs
    • Gaming
  • Learn
    • Education
    • Investments
    • Staking
    • Wallets and Exchanges
  • ICOs
  • Mining
  • Crypto Tools
    • Exchange Tool
  • Shop
CryptoPulseDaily.com
Home»Security and Privacy»New Venom Stealer MaaS Platform Automates Continuous Data Theft
New Venom Stealer MaaS Platform Automates Continuous Data Theft
Security and Privacy

New Venom Stealer MaaS Platform Automates Continuous Data Theft

April 1, 2026No Comments3 Mins Read
Share
Facebook Twitter LinkedIn Pinterest Email

A new malware-as-a-service (MaaS) platform dubbed Venom Stealer that automates credential theft and continuous data exfiltration has been identified by cybersecurity researchers.

The platform is being sold on cybercrime networks and is designed to go beyond traditional credential harvesting tools by maintaining ongoing access to stolen data even after the initial infection.

Integrating ClickFix Into Venom Stealer

According to a new advisory published by BlackFog researchers on March 31, Venom Stealer includes the integration of ClickFix social engineering directly into its operator panel, allowing attackers to automate the entire attack chain from infection to data theft.

The platform operates on a subscription model ranging from $250 per month to $1,800 for lifetime access, and includes Telegram-based licensing and an affiliate program.

The infection process begins when a victim lands on a fake webpage, such as a Cloudflare CAPTCHA, an OS update prompt, an SSL certificate error or a font installation page. Victims are instructed to open a Run dialog or Terminal, paste a command and execute it themselves, which makes the activity appear user-initiated and helps bypass detection systems.

Once executed, the malware extracts saved passwords, session cookies, browsing history, autofill data and cryptocurrency wallet information from Chromium and Firefox-based browsers. The malware also performs system fingerprinting and collects browser extension data, creating a detailed profile of the infected system.

Read more on social engineering attacks: Anatomy of a Service Desk Social Engineering Attack

Continuous Exfiltration and Crypto Theft

Unlike traditional infostealers that run once and exit, Venom Stealer remains active and continuously monitors Chrome’s login database to capture newly saved credentials in real time. This makes credential rotation less effective as a response strategy and extends the period during which data can be stolen.

See also  Riot and Texas Blockchain Council Challenge US Government’s Bitcoin Mining Data Request in Court

If cryptocurrency wallets are found, the data is sent to a server-side cracking engine running on GPU infrastructure. Once cracked, funds are automatically transferred across multiple blockchain networks, including tokens and decentralized finance positions.

Key capabilities of the malware include:

  • Automated ClickFix delivery templates for Windows and macOS

  • Continuous credential monitoring after infection

  • Cryptocurrency wallet cracking and automatic fund transfers

  • File system search for seed phrases and password files

BlackFog said the attack chain can be disrupted by restricting PowerShell execution, disabling the Run dialog for standard users and training employees to recognize ClickFix-style social engineering attempts. Monitoring outbound network traffic is also important, as the malware relies on immediate data exfiltration to attacker-controlled servers.

The research indicated that the platform is actively maintained, with multiple updates released in March 2026, suggesting a full-time development operation.

Source link

Automates continuous Data MaaS Platform Stealer Theft Venom
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

How Malicious Liquidity Pools Are Trick-Quoting Ethereum and Polygon Users

July 17, 2026

Visa backs Open USD with new stablecoin platform as Circle (CRCL) faces fresh competition

July 16, 2026

Modular macOS Stealer Uses Kill Loops to Force Password Entry

July 16, 2026

VELVET slides 18% – But key data points to consolidation, not sell-off

July 16, 2026
Add A Comment
Leave A Reply Cancel Reply

Top Posts

XP Launches Resale Ticket Marketplace, Powered by Solana

November 2, 2023

XRP ruling one of crypto’s first major wins over the SEC: Synthetix founder

July 19, 2023

Arkham Unveils Over 1,250 Core Scientific Bitcoin Wallets: A Transparency Milestone

September 21, 2024

Subscribe to Updates

Get the latest creative news From Crypto Daily Pulse directly in your Inbox!

Our mission is to develop a community of people who try to make financially sound decisions. The website strives to educate individuals in making wise choices about Crypto, ICOs, Web3, Blockchain and more.

We're social. Connect with us:

Facebook X (Twitter) Instagram Pinterest YouTube
Top Insights

Will new Uniswap protocol fee proposals drive ‘substantial UNI burn’?

July 18, 2026

Ripple Commits $250,000 to 25 Veteran-Owned Businesses Through Hire Heroes USA

July 18, 2026

Trump Teleprompter Operator Faces Trading Ban After Alleged $100K Kalshi Windfall: Report

July 18, 2026
Get Informed

Subscribe to Updates

Get the latest creative news From Crypto Daily Pulse directly in your Inbox!

  • Contact
  • Privacy Policy
  • Terms & Conditions
© 2026 Crypto Pulse Daily - All rights reserved.

Type above and press Enter to search. Press Esc to cancel.

Cleantalk Pixel
  • bitcoinBitcoin(BTC)$63,938.001.81%
  • ethereumEthereum(ETH)$1,845.630.95%
  • tetherTether(USDT)$1.000.03%
  • binancecoinBNB(BNB)$567.820.79%
  • usd-coinUSDC(USDC)$1.000.00%
  • rippleXRP(XRP)$1.090.79%
  • solanaSolana(SOL)$74.900.66%
  • tronTRON(TRX)$0.3229770.26%
  • Figure HelocFigure Heloc(FIGR_HELOC)$1.030.65%
  • HyperliquidHyperliquid(HYPE)$58.98-0.80%