26 Aug Spora Ransomware Can Steal Passwords and Logs Keystrokes
Researchers from Deep Instinct have identified an upgraded variant of the Spora ransomware which is able to log keystrokes and passwords, and even steal from Bitcoin wallets.
Spora was already considered to be a particularly virulent form of ransomware that uses a complex encryption process to lock the victim’s data, but the new version can now also see into the user’s browsing history and cookies and extract credentials from it.
The ransomware is delivered using a phishing email with a Word attachment that often claims to be an invoice. Researcher Guy Propper from Deep Instinct says that even though Spora uses powerful cryptography, the method of delivery relies on user interaction, which is why recipients always have to be vigilant of unsolicited emails from unknown sources.