Cybercriminals are using legitimate-looking software and documents to deploy a new info-stealing malware called PXA Stealer. The malware, written in Python, is used to pilfer sensitive data like passwords and credit card information. Initially targeting government and educational institutions in Europe and Asia, the campaign has now shifted to targeting individuals in several countries, with SentinelOne identifying 4,000 infected IP addresses across 62 countries. This particular malware campaign is dangerous because it can steal browser data, crypto wallet info, and data from popular apps. The hackers are using sophisticated techniques, such as malicious DLL files embedded in seemingly harmless applications like a PDF reader or a Word document, to avoid detection. To stay safe, users should be cautious when clicking on links or downloading attachments from unknown senders and consider using a password manager instead of storing sensitive data in their browsers.