Christmas Cookies on the Table. Session Cookies on the Dark Web.
As Christmas Eve draws near, we’re all picturing warm, gooey cookies piled high on the kitchen table, ready for Santa (or that office party). But here’s the twist: while you’re nibbling on chocolate chips, cybercriminals are munching on your session cookies, swiped straight from your browser and auctioned off on the dark web like they’re the hottest holiday bake sale.
It’s like trading grandma’s secret recipe for a hacker’s shopping spree – sweet for them, sour for you!
To end the year, the baseVISION Threat Intelligence Report covers the 2025 Infostealer Epidemic, along with Threat Hunting queries and IOCs to help mitigate these threats. Infostealer malware has evolved far beyond simple password theft. It now acts as a full digital identity siphoning mechanism, sneaking in quietly to grab your login info, session tokens, and personal details paving the way for identity theft, drained bank accounts, and major company breaches.
In our connected world, where we log in for work, shopping, and streaming, this isn’t just a tech issue; it’s a daily risk for everyone, from busy parents to boardroom execs. One click could turn your holiday season (or that of your suppliers) into a mess of frozen accounts and fraud alerts. Stay vigilant, and let’s keep those cookies off the bad guys’ plate.
Report written by Giulia Melotti Garibaldi (Security Analyst) and Philipp Hauswirth (Threat Intelligence Analyst and Detection Engineer) and Flamur Ramiqi (Teamlead and Senior Threat Intelligence Analyst and Detection Engineer).
Merry Christmas and a Happy, Vigilant New Year! We detail the infection chain, attacker infrastructure, and provide practical recommendations to reduce your organization’s exposure.
Do you want to know more about the Extended Threat Intelligence & Hunting Service?
Flamur Ramiqi
Team Lead & Senior Threat Intelligence Analyst and Detection Engineer