RedTiger: New Red Teaming Tool in the Wild Targeting Gamers and Discord Accounts

This Netskope Threat Labs report analyzes RedTiger, a newly public, modular Python-based red-teaming toolkit whose infostealer payloads are being abused in the wild to target gamers—especially Discord and Roblox users—by stealing tokens, browser-stored credentials and payment data, cryptocurrency wallets, screenshots/webcam images, and selected files; the malware supports persistence, anti-sandbox checks, hosts-file tampering, process/file spamming to hinder forensics, and exfiltrates collected data in two stages (upload to GoFile and delivery of the download link via Discord webhook).