Myth Stealer Malware Hits Chrome, Evades Detection

A newly identified information-stealing malware written in the Rust programming language is targeting Chromium- and Gecko-based browsers, according to researchers at cybersecurity firm Trellix. Dubbed Myth Stealer, the malware has been active since December 2024 and is distributed through fake gaming sites and Telegram channels. Initially offered as a free trial, it has shifted to a subscription model, with payments accepted in cryptocurrency and Razer Gold.

Myth Stealer uses advanced evasion techniques, including fake application windows built with Rust GUI libraries and string obfuscation via the obfstr crate. It targets browsers such as Chrome, Firefox, Edge, Opera, and Brave, as well as platforms like Discord. The malware leverages remote debugging features to extract data and attempts privilege escalation using Windows APIs.

Persistence is achieved through a disguised executable and registry manipulation. Trellix found the malware using proactive threat hunting, highlighting its ability to bypass traditional detection and maintain long-term access to compromised systems.