Trend Micro has been alerted to a new version of Cerber, that has become extremely popular with cyber criminals recently. This type of threat not only encrypts data but also steals personal information to target poorly protected battlefield portfolios. Specifically, Cerber attacks Bitcoin Core, as well as the external portfolios Electrum and Multibit.
Similar to other varieties of the malicious program, and the authors of this attack their victims through phishing emails with a JavaScript file included in email letters as an attached file. After opening the file, he attacks key wallet-related files, then tries to steal passwords from Mozilla, Chrome, and Internet Explorer, again linked to the operations. Everything that is found, Cerber is able to send to a remote server under the control of the authors of the current campaign. To further hurt the threat, the threat deletes all files associated with the wallet and then begins its standard encryption process for files on the computer and the submission of a ransom-deceptive scenario note and a nightmare for anyone who has suffered the attack.
picture source - pixabay.com