Typhon Stealer Could Steal Your Login Credentials
Typhon stealer is the name of a malicious infostealer. The base Typhon malware has been further updated over time and some of its newer iterations are known as TyphonReborn.
Typhon has a wide range of data exfiltration capabilities and can scrape various information from the victim system. This includes OS information, installed application lists, present antivirus software, and locally saved Wi-Fi passwords, among others.
The original Typhon malware has a few extra features and is more of a Swiss army knife malicious toolkit than Reborn, which is a pure infostealer. Typhon can also use Discord to spread in a worm-like manner. The malware also includes a cryptocurrency mining module.
The infostealer component allows for keylogging and performing file manipulations as well. The malware can scrape browsers for locally stored information, including logins and credentials, as well as cookies and bookmarks.
The significant capabilities of Typhon make it a serious threat that will need a dedicated anti-malware tool to clean an infected system.