The rapidly expanding info-stealer underground economy sells access to compromised accounts as well as customized info-stealers to threat actors for specific campaigns and targeting. Info-stealers such as Prynt Stealer can lead to further compromise including ransomware, data extortion, espionage, and destructive attacks.

While the situation may change quickly, the current primary exploitation vector for Prynt Stealer appears to be trojanized files providing pirated software. Due to “bring your own device” (BYOD) and “work from home” (WFH) policies currently in place, organizations should regularly conduct cyber awareness training that discourages the use of pirated software, as well as block the URLs of Torrent and Warez sites. Password re-use should be discouraged, as credentials and passwords are obtained by threat actors and used to attempt compromise of organizational accounts. Organizations can also conduct beacon analysis of network activity in order to identify and block data exfiltration. Since individual compromise is inevitable, post-exploitation detection and threat hunting – a service offered by Binary Defense – is an essential layer of a defense in depth approach to limit and mitigate such attacks.

https://www.bleepingcomputer.com/news/security/new-powerful-prynt-stealer-malware-sells-for-just-100-per-month/

Prynt Stealer Spotted In the Wild