The silent “Storm”: New infostealer hijacks sessions, decrypts server-side

* A new infostealer called Storm appeared on underground cybercrime networks in early 2026, representing a shift in how credential theft is developing. For under $1,000 a month, operators get a stealer that harvests browser credentials, session cooki...