A new information-stealing campaign is targeting the government and education sectors in Europe and Asia. The campaign has not yet been associated with a specific actor, but the attacker is known to be Vietnamese-speaking. The threat group is using PXA Stealer, a new Python-based malware. It can decrypt a victim’s master password to steal other stored passwords for various accounts. Cisco Talos has spotted the actor selling credentials to Facebook and Zalo accounts. 

Read more: https://thehackernews.com/2024/11/vietnamese-hacker-group-deploys-new-pxa.html