In an alarming report published by Kelait was revealed that more than 3.9 billion passwords were shared in credential lists throughout 2024after being extracted by infostealer malware. This type of malicious software, specifically designed to steal sensitive information, infected more than 4.3 million devices worldwide last year.
According to the report, three main variants of this malware –Lumma, Stealc and Redline– They were responsible for 75% of infections, affecting both individual users and companies. Experts warn that these stolen data can be used to commit fraud, impersonation of identity or even more sophisticated attacks against organizations.
How to protect your accounts and personal data?
Given this growing threat, it is essential to take quick and effective measures to protect your information:
- Change your passwords immediately: If you use the same password in several accounts, change it for unique and safe combinations in each.
- Activate two steps authentication: This method adds an additional security layer, making unauthorized access, even if your password has been stolen.
- Use a password manager: These programs generate and store complex and unique passwords for each account.
- Verify if your data has been compromised: Use data gap monitoring services to check if your credentials have been exposed.
- Keep your software updated: Includes operating systems, browsers and antivirus to protect yourself against known vulnerabilities.
David Carmiel, Kela CEOwarned that “clandestine economies, from malware as a service to stolen credential markets, have created a powerful infrastructure that facilitates malicious activities.” Therefore, it is crucial to be alert and take preventive measures to avoid being a victim of these cyber attacks.
Do not expect to be the next objective, reinforce your digital safety and protect your personal information before it is too late.