A critical alert has been issued regarding the SolyxImmortal info stealer, which targets Windows users by harvesting sensitive data. The malware gains persistent access by modifying the Windows registry and storing itself in the APPDATA folder. It extracts credentials from Chromium-based browsers and collects various document types while executing keylogging and screen capture functionalities.
Written in Python, this malware prominently uses Turkish language cues and exfiltrates data through Discord webhooks to blend with legitimate traffic. Users are advised to update their security systems and monitor for unauthorized registry changes to prevent infection.