When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
The cmd script is responsible for executing the Snake infostealer from an actor-controlled GitLab repo.
Once harvested, credentials and cookies are shared via numerous platforms, including Discord, GitHub, and Telegram.
The discovery comes amid increased scrutiny of Facebook for its perceived failure to assist victims of account takeovers.
