Bleepingcomputer
StealC Malware Control Panel Exploited by Researchers
First seen 17 Jan 2026, 13:46 UTC
•
•94% similarity
•24.6
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
Researchers exploited a cross-site scripting (XSS) vulnerability in the control panel of the StealC info-stealing malware, allowing them to monitor active sessions and gather data on the attackers' hardware. StealC, which surfaced in early 2023, gained traction through aggressive promotion on dark web channels and has been known for its data theft capabilities. The malware has undergone several enhancements, including a version 2.0 released in April 2025.
ThreatCluster AI