New subscription-based malware is making the rounds, and it can steal anything from passwords to your credit card details.
A new, highly dangerous malware called “Erbium” has been making the rounds over the last couple of months, and it’s highly likely that it will spread to new channels.
Erbium, while seemingly used at a small scale right now, has a lot of potential — and that’s scary. For the time being, this information-stealing malware is being shared under the disguise of pirated games and cheats for popular titles. However, because of its nature, it can spread like wildfire, because Erbium is a Malware-as-a-Service — meaning that pretty much anyone can get their hands on it.
Initially spotted in August 2022 by Cyfirma, the malware, hidden away within game cracks, has a lot of power. It can steal data found within Chromium and Gecko-based browsers, including passwords, cookies, form autofill information, and credit card data. Moreover, it targets cryptocurrency users by attempting to steal data from their wallets as long as they’re installed as a browser extension.
Erbium steals Telegram authentication files, Steam and Discord tokens, and screenshots from each connected monitor. As all of these things are being stolen, the threat actors are being sent a full overview of what was extracted from the victim.