Security researchers uncovered a critical XSS vulnerability in the control panel used by StealC malware operators, successfully breaching the infrastructure designed for harvesting user data. Through this exploit, they gained access to system fingerprints, active user sessions, and authentication cookies stored within the malware distribution network.
This incident reveals a harsh reality about Malware-as-a-Service (MaaS) platforms: despite their sophisticated capabilities, these operations often suffer from poor security hygiene on the backend. The exposure demonstrates that even attack infra