Hackers Hijack SHELLTER: Infostealers Unleashed in Cyber Comedy of Errors
Hackers are now using the legitimate red teaming tool SHELLTER for infostealer attacks after a licensed copy leaked. Elastic Security Labs found malware campaigns exploiting SHELLTER to bypass security, prompting them to release a dynamic unpacker for analysis. Meanwhile, the creators of SHELLTER criticized Elastic for their surprise exposé.
Hot Take:
When life gives hackers lemons, they make infostealer lemonade! Shellter, a legitimate red-teaming tool, is now the cybercriminals’ secret weapon of choice. It’s like watching a heist movie where the robbers use the security system as their accomplice. Hollywood, take notes!
Key Points:
- Hackers are exploiting the Shellter tool, originally designed for red-teaming, to spread infostealer malware.
- A licensed copy of Shellter Elite was leaked, leading to its misuse in various malicious campaigns.
- Elastic Security Labs has responded by releasing a dynamic unpacker to counteract the malicious use of Shellter.
- The drama unfolds as Shellter criticizes Elastic for not communicating the breach, prioritizing a public exposé instead.
- Further complicating matters, Shellter Elite v11.0 is now being sold on forums, reflecting past incidents with tools like Cobalt Strike.
Already a member? Log in here