New "Storm" Infostealer Malware Uses Server-Side Decryption to Evade Detection

📌 A new infostealer malware named "Storm" has been identified, which employs server-side decryption of stolen credentials to evade security detection mechanisms. The malware targets sensitive data, including login credentials, by decrypting them remotely rather than on the infected device. This technique reduces the likelihood of detection by endpoint security tools that monitor local decryption processes. No specific threat actors, affected organizations, or geographic targets were disclosed in the report. The discovery highlights an evolution in infostealer tactics to bypass traditional security controls. The technical details of the decryption method or associated vulnerabilities were not provided.