Security News > 2022 > June > Emotet malware now steals credit cards from Google Chrome users
The Emotet botnet is now attempting to infect potential victims with a credit card stealer module designed to harvest credit card information stored in Google Chrome user profiles.
After stealing the credit card info, the malware will send it to command-and-control servers different than the ones the Emotet card stealer module.
The Emotet malware was developed and deployed in attacks as a banking trojan in 2014.
Emotet is known for dropping Qbot and Trickbot malware trojan payloads on victims' compromised computers, which are used to deploy additional malware, including Cobalt Strike beacons and ransomware such as Ryuk and Conti.
German law enforcement used Emotet's own infrastructure against the botnet, delivering a module that uninstalled the malware from infected devices on April 25th, 2021.
The botnet came back in November 2021 using TrickBot's already existing infrastructure when Emotet research group Cryptolaemus, computer security firm GData, and cybersecurity firm Advanced Intel all detected the TrickBot malware being used to an Emotet loader.
News URL
Related news
- Google Chrome to use on-device AI to detect tech support scams (source)
- Google Chrome to block admin-level browser launches for better security (source)
- Google Chrome's Built-in Manager Lets Users Update Breached Passwords with One Click (source)
- New Android malware steals your credit cards for NFC relay attacks (source)
- Google Drops Cookie Prompt in Chrome, Adds IP Protection to Incognito (source)
- Google links new LostKeys data theft malware to Russian cyberspies (source)
- Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android (source)
- Google fixes high severity Chrome flaw with public exploit (source)