Cybercriminals try to distribute new information-stealing malware - opens in a new tab - by presenting it as cheats and game hacks.
According to Cluster25 cybersecurity researchers, the malware, dubbed "Erbium," is malware-as-a-service, meaning whoever pays the monthly fee can use all of its features.
Currently, the tool is distributed as a game crack, but this could change at any time, if another threat actor rents it or attacks another type of victim.
Cheaper than RedLine Stealer
When it comes to features and price, Erbium is similar to the infamous RedLine Stealer in its capabilities, but is available for a fraction of its cost.
Researchers say it can steal information stored in popular browsers (passwords, cookies, payment data, autofill information, etc.), data from cryptocurrency wallets (Atomic, Exodus, Electrum, and many more), two-factor authentication codes of various tools. (Trezor Password Manager, EOS Authenticator, Authy 2FA, Authenticator 2FA), as well as screenshots, Steam and Discord tokens, and Telegram authentication files.
At the same time, it's much cheaper than RedLine, costing just €100 for a monthly subscription or €1,000 for an annual license. While that may still sound like a lot, it costs around a third of what RedLine charges, and it's also worth mentioning that Erbium's price has risen from €9, indicating not only strong demand but also its growing popularity.
The hacker community also praised the creators of Erbium for their hard work and for listening and implementing community feedback.
Speaking of the creators, Cluster25 did not determine who the authors are, but found that Erbium was being promoted on Russian-speaking forums last summer.
At the same time, terminals were committed in the United States, France, Colombia, Spain, Italy, India, Vietnam and Malaysia.
Via: BleepingComputer (Opens in a new tab)