A hacker group called Zestix has exploited vulnerabilities in around 50 companies by stealing credentials through infostealers. The breaches occurred primarily because these organizations failed to implement multifactor authentication (MFA), allowing attackers to access sensitive data easily.

Infostealers have evolved into powerful, user-friendly tools for cybercriminals, enabling the silent theft of sensitive information without detection. These malware variants, often available through malware-as-a-service platforms, are extensively used for credential theft and other malicious activities. Their success hinges on speed and stealth, allowing them to operate without leaving traces.