05 Aug Latest Cerber Ransomware Pilfers Browser Passwords and Bitcoin Wallet Data
News last Friday reported a new version of the Cerber ransomware that can now steal passwords in browsers and collect data from Bitcoin wallets. Trend Micro security researchers Janus Agcaoili and Gilbert Sison uncovered the latest update on the ransomware.
The latest Cerber dumps passwords from different web browsers such as Mozilla Firefox, Internet Explorer, and Google Chrome. It is also capable of searching for data linked to Bitcoin wallet programs, stealing files used in the Bitcoin Core app called wallet.dat, electrum.dat used by Electrum, and *.wallet used by Multibit .
Cerber enables hackers to access online accounts by stealing browser passwords, but it cannot necessarily steal cryptocurrency logins to pilfer Bitcoin funds. This is largely because most of the cryptocurrency files searched by Cerber no longer stores passwords.
According to the Trend Micro researchers, this demonstrates how attackers are now looking for alternative ways to earn from their hacks, making Bitcoin wallets the ideal target.