CyberSecurityBoard
Sponsor Register Login

Hackers steal Discord accounts with RedTIGER-based infostealer

Cybercriminals have been actively stealing Discord accounts using a sophisticated infostealer based on the RedTIGER malware. This new threat targets users by harvesting sensitive information, including login credentials and authentication tokens, enabling attackers to hijack accounts and exploit them for malicious purposes. The RedTIGER infostealer is distributed through phishing campaigns and malicious downloads, often disguised as legitimate software or game-related tools. Once installed, it silently collects data from browsers, Discord clients, and other applications, sending the stolen information back to the attackers' command and control servers. This campaign highlights the increasing risk to Discord users, especially gamers and communities relying on the platform for communication. Security experts recommend enabling two-factor authentication (2FA) on Discord accounts, avoiding suspicious links, and using reputable antivirus solutions to detect and block such malware. The rise of infostealers like RedTIGER underscores the need for heightened vigilance and robust cybersecurity practices among users and organizations alike. This article delves into the mechanics of the RedTIGER infostealer, its distribution methods, and practical steps to mitigate the threat, providing a comprehensive overview for cybersecurity professionals and everyday users concerned about account security.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 27 Oct 2025 01:44:03 +0000


Cyber News related to Hackers steal Discord accounts with RedTIGER-based infostealer

Hackers steal Discord accounts with RedTIGER-based infostealer - Cybercriminals have been actively stealing Discord accounts using a sophisticated infostealer based on the RedTIGER malware. This new threat targets users by harvesting sensitive information, including login credentials and authentication tokens, ...
2 months ago Bleepingcomputer.com
RedTiger: A New Red Teaming Tool Enhancing Cybersecurity Assessments - RedTiger is an innovative red teaming tool designed to enhance cybersecurity assessments by simulating advanced attack scenarios. This tool enables security professionals to identify vulnerabilities and improve organizational defenses effectively. ...
3 months ago Cybersecuritynews.com
Bloomberg Crypto X account snafu leads to Discord phishing attack - The official Twitter account for Bloomberg Crypto was used earlier today to redirect users to a deceptive website that stole Discord credentials in a phishing attack. As first spotted by crypto fraud investigator ZachXBT, the profile contained a link ...
2 years ago Bleepingcomputer.com Scattered Spider
Discord adds Security Key support for all users to enhance security - Discord has made security key multi-factor authentication available for all accounts on the platform, bringing significant security and anti-phishing benefits to its 500+ million registered users. The popular social platform first highlighted the ...
2 years ago Bleepingcomputer.com
Five best practices for securing Active Directory service accounts - Windows Active Directory (AD) service accounts are prime cyber-attack targets due to their elevated privileges and automated/continuous access to important systems. To support software-specific functions, service accounts require elevated permissions ...
10 months ago Bleepingcomputer.com
Deploy Anti-Infostealer Defenses to Protect Sensitive Data - In today's digital landscape, the threat of infostealer malware is escalating, posing significant risks to sensitive data across organizations. Infostealers are malicious programs designed to extract confidential information such as credentials, ...
3 months ago Infosecurity-magazine.com FIN7 Lazarus Group
Hackers Breach Steam Discord Accounts, Launch Malware - On Christmas Day, the popular indie strategy game Slay the Spire's fan expansion, Downfall, was compromised, allowing Epsilon information stealer malware to be distributed over the Steam update system. Developer Michael Mayhem revealed that the ...
2 years ago Cysecurity.news
New Python-Based Discord RAT Attacking Users to Steal Login Credentials - Content == "Sending Command #2 - Password Stealer" and message.channel.id == channelid: username = os.getlogin() try: passwords = open(f"C:/Users/{username}/AppData/Local/Google/Chrome/User Data/Default/Login Data", "rb").read() await ...
9 months ago Cybersecuritynews.com
Protect your Discord account with a Security Key - Users of the chat app Discord may now protect their accounts using security keys. The developers of Discord have added the option to the existing arsenal of multi-factor authentication options that the service supports. Discord users are encouraged ...
2 years ago Ghacks.net
CISA Warns of Compromised Microsoft Accounts - CISA issued a fresh CISA emergency directive in early April instructing U.S. federal agencies to mitigate risks stemming from the breach of numerous Microsoft corporate email accounts by the Russian APT29 hacking group. The directive is known as ...
1 year ago Securityboulevard.com APT29
Malicious Python Package Mimic as Attacking Discord Developers With Malicious Remote Commands - The package specifically targeted developers building or maintaining Discord bots-typically indie developers, automation engineers, or small teams who might install such tools without extensive security scrutiny. Following identification, the ...
8 months ago Cybersecuritynews.com
Ukrainian Raccoon Infostealer Operator Extradited to US - A Ukrainian national charged with operating the Raccoon Infostealer malware-as-a-service has made an appearance in a US court after being extradited from the Netherlands. The man, Mark Sokolovsky, 28, was arrested in March 2022, after the FBI and law ...
1 year ago Securityweek.com
Sophisticated Booking.com Scam Targeting Guests with Vidar Infostealer - The 'How To' guide for targeting Booking.com customers is being offered for sale on the dark web, as well as on underground cybercrime forums, including Russian-speaking platforms such as XSS.IS. Cybersecurity firm Secureworks is alerting Booking.com ...
2 years ago Hackread.com
Threat Actors Weaponize Discord Webhooks for Malicious Activities - Cybersecurity researchers have uncovered a rising trend where threat actors exploit Discord webhooks to conduct malicious activities. Discord, a popular communication platform, offers webhooks that allow automated messages and data sharing. However, ...
3 months ago Cybersecuritynews.com
Fake and Stolen X Gold Accounts Flood Dark Web - A surge of fake or stolen X Gold accounts has been flooding marketplaces and forums both on the surface web and the dark web over the past year, according to CloudSEK. Threat actors have used multiple techniques to forge or steal X Gold accounts ...
2 years ago Infosecurity-magazine.com
Holiday Hackers: How to Safeguard Your Service Desk - Hackers really don't take holidays, but they will take advantage of them. Many of these cyberattacks will zero in on the service or help desk to gain entry into network systems. Recovering accounts because of forgotten passwords is one of the ...
2 years ago Bleepingcomputer.com
Lumma Infostealer Malware Attacks Users: What You Need to Know - Lumma Infostealer is a newly identified malware targeting users worldwide, designed to steal sensitive information such as login credentials, financial data, and personal details. This malware operates stealthily, infiltrating systems through ...
3 months ago Cybersecuritynews.com
Hackers Flood Dark Web Markets With Hijacked X Gold accounts - In the age of social media, verification badges hold significant power. On Twitter, the coveted blue tick signifies legitimacy and influence, commanding increased trust and engagement from followers. With the platform's recent monetization of ...
2 years ago Cybersecuritynews.com
CyberCrime & Doing Time: Identification Documents: an Obsolete Fraud Countermeasure - When I'm talking to bankers and other fraud fighters, I often mention how easy it is for a criminal to obtain a Drivers License bearing any information they desire. In the new case, Brianna Mills, a 28-year old bank teller in Loganville, Georgia ...
1 year ago Garwarner.blogspot.com
How Hackers Interrupted GTA 5 Online Gameplay on PC - Recently, a cyber-attack on Grand Theft Auto 5 Online on PC caused an interruption to thousands of players’ gameplays. The game was completely taken offline and players couldn’t even access the main gameplay menu. The attack caused an uproar ...
3 years ago Hackread.com
Safeguarding Children and Vulnerable Groups Online Strategies for Enhancing Online Safety in Digital Communities - As the younger generations get more involved with these online communities, they can also be targets for cyberbullies, hackers, scammers, online predators, and much worse. As the internet landscape continues to evolve, online forums and group chat ...
2 years ago Cyberdefensemagazine.com
Sophisticated Phishing Attack Abuses Discord & Attacked 30,000 Users - This tactic is particularly effective as users may still have old invite links saved in announcements, websites, or social media posts, inadvertently leading them to attackers’ servers instead of legitimate ones. In January 2025, investigators ...
8 months ago Cybersecuritynews.com
North Korean Hackers Use Fake Job Offers & Salary Bumps as Lure for Crypto Theft - Recent investigations have uncovered a massive operation carried out by North Korean hackers looking to steal cryptocurrency through fake job offers and salary bumps. According to recent reports, hackers have been able to trace the malicious ...
2 years ago Therecord.media
Okta: Breach Affected All Customer Support Users - When KrebsOnSecurity broke the news on Oct. 20, 2023 that identity and authentication giant Okta had suffered a breach in its customer support department, Okta said the intrusion allowed hackers to steal sensitive data from fewer than one percent of ...
2 years ago Krebsonsecurity.com
Hackers hijack govt and business accounts on X for crypto scams - Hackers are increasingly targeting verified accounts on X belonging to government and business profiles and marked with 'gold' and 'grey' checkmarks to promote cryptocurrency scams. A recent high-profile case is the X account of cyber threat ...
2 years ago Bleepingcomputer.com

Latest Cyber News


    Cyber Trends (last 7 days)


    Trending Cyber News (last 7 days)