Styx Stealer Backfires: Hacker Unwittingly Exposes His Own Identity During Debugging Session

The new malicious software Styx Stealer proved to be a threat to its creator as well. The tool was supposed to steal user data, however, due to a simple mistake, the hacker revealed sensitive data from his computer during a debugging session, allowing Check Point Research analysts to identify him.

During routine debugging of his latest malicious software “Styx Stealer”, the cybercriminal – developer (hiding under the pseudonym “Sty1x”), inadvertently revealed vast amounts of data from his computer. This unfortunate mistake enabled Check Point Research experts to discover the identity of the hacker himself, his clients and associates, including other cybercriminals such as “Fucosreal”, responsible for a global campaign using the remote access trojan Agent Tesla.

“Styx Stealer”, developed from no less dangerous “Phemedrone Stealer”, is an advanced malicious software capable of stealing data from browsers, chat sessions, and even cryptocurrencies. The hacker sold licenses for his creation for hundreds of dollars, but now, due to a mistake, he became the victim.

This discovery underlines how important it is to be cautious and observant in cyberspace. Even minor errors can lead to serious leaks – irrespective of which side we are on. Check Point representatives assured that, thanks to the investigation, the malicious campaigns related with Styx Stealer were neutralized before they could harm users. At the same time, this was just one of many variants of malicious software circulating on the network, hence experts encourage caution, suggesting taking specific steps to reduce the risk of infecting corporate networks. Check Point’s recommendations include:

• Ensuring that all operating systems and applications are up-to-date.
• Being cautious of unexpected emails, especially those containing links from unknown senders.
• Increasing employee awareness about cybersecurity.
• Consulting cybersecurity experts in case of any doubts.