Skip to main content
HomeTopicsInfostealer

Infostealer

Cybersecurity statistics about infostealer

Showing 1-20 of 21 results

WhiteSnake Stealer was the most widely observed infostealer family, accounting for 31.6% of all tracked output, followed by RedLine at 23.9%, Rhadamanthys at 17.1%, and StealC at 6.9%.

Bridewell5/27/2026

In 2025, the Lumma infostealer was responsible for 2.2 million dark web listings, roughly 42% of the total.

Cognyte5/27/2026
Dark Web

Credential-stealer infections were dominated by RedLine with 911,968 infections (50.80%), Lumma with 499,784 infections (27.84%), and Vidar with 236,778 infections (13.19%).

Fortinet5/27/2026
MalwareCredential Theft

Infostealer infection attempts increased 58% in 2024.

KnowBe48/21/2025
Financial

Infostealer malware has tripled in prevalence.

Picus8/11/2025

Both infostealer infections and compromised credentials are on track to surpass 2024 figures, which saw over 4.3 million machines infected with approximately 330 million compromised credentials. This indicates a 24% increase YoY in these areas.

KELA8/4/2025
Compromised credentials

2.67 million machines were infected by infostealer malware in H1 2025. This led to more than 204 million compromised credentials being observed.

KELA8/4/2025
Compromised credentials

The theft of credentials via information-stealing malware has skyrocketed by 800% since the start of 2025.

Flashpoint7/31/2025
Credentials

Infostealers are projected to account for 35% of detected malware threats in 2025.

eSentire7/11/2025

There has been a 156% increase in cyberattacks that target user logins, specifically attributed to info-stealing malware and advanced phishing kits.

eSentire7/11/2025
Identity attack

Infostealer malware attacks have surged by 58% in Latin America.

Check Point7/10/2025
Latin America

Lumma Stealer is now the top type of malware and accounts for over 25% of recorded infostealer attacks worldwide.

Lumu6/26/2025

Before disruption, Lumma Stealer activity in H1 2025 was higher than in H2 2024 (+21%).

ESET6/26/2025

Lumma Stealer accounts for over 50% of infostealer attacks on the US SLED sector.

Lumu6/26/2025
SLEDUS

Infostealer activity has surged by 266% in recent years.

KELA4/29/2025

FortiGuard Labs observed a 500% increase in the past year in logs available from systems compromised by infostealer malware.

Fortinet4/28/2025
Malware

Early data from 2025 suggests an even greater increase of 180% of weekly infostealer volume compared to 2023.

IBM 4/17/2025

The number of infostealers delivered via phishing emails per week increased by 84% year-over-year.

IBM 4/17/2025
Phishing

Analysis of dark web data reveals listings of infostealer advertisements increased 12% in 2024 over the previous year.

IBM 4/17/2025
Dark web

There was a 12% year-over-year increase of infostealer credentials for sale on the dark web.

IBM 4/17/2025
Dark web