This new malware targets Discord and browser data using one major unique feature

Use of Go programming language is especially worrying, experts warn

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

A new Golang stealer has been identified by theTrellix Advanced Research Centertargeting Windows users globally, including across the US, Europe, and Southeast Asia, and the potential for damage is alarming.

Trellix details how the use of Golang in malware development is still reasonably rare compared to other popularprogramming languages, however the new malware which has been dubbed Skuld is one of the few that is written with Go.

What this means is that, because of its simplicity and cross-platform compatibility, themalwarehas the potential to target numerousoperating systems.

Golang malware is after your data

To make matters worse, Golang malware is typically harder to reverse engineer, meaning that it can take security researchers longer to detect and react with new malware removal techniques.

These are the best firewalls around>Gamers are being targeted by more dangerous malware>This malware is evolving to become more dangerous than ever

According to Trellix, the malware’s developer, who has been nicknamed Deathined, is believed to have taken inspiration from numerous open-source projects and malware samples to build Skuld.

It works by searching for data stored in applications like Discord and web browsers, and Trellix also suggests that a cryptocurrency asset-stealing module could be in the works.

Since its outbreak in late April, the US has been the center for attacks, with some European countries like France, Germany, and Ukraine also seeing large numbers of attacks.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Victims will see a fake error message, which, in Trellix’s example, reads: “Error code: Windows_0x988958 Something gone wrong.” Clicking “Ok” then executes the different modules which go on to steal information from the victim.

Skuld then sends the information back to the attacker via Discord webhook or Gofile upload service

Concluding its findings, Trellix maintains that this novel type of malware poses new threats to individuals and businesses, and the rise of Golang presents new challenges for security researchers.

With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!

Cisco issues patch to fix serious flaw allowing possible industrial systems takeover

Washington state court systems taken offline following cyberattack

How Agentic AI will revolutionize business operations – are you ready?