Categories: NewsSecurity

Cerber Ransomware Aims to Steal Bitcoin Wallet Information

Existing ransomware strains often see their fair share of updates along the way. Some developers would rather keep their existing creations alive rather than develop a new project from scratch. Cerber is currently one of the best-known types of ransomware and is more than capable of causing havoc. It now appears that its updated version can steal Bitcoin wallet data as well as passwords stored in the browser.

Cerber Updates Cause More Problems for Computer Users

As if ransomware itself was not annoying enough to deal with, the Cerber developers have decided to take things to a whole new level. Their malware can now collect and steal data from infected computers alongside its traditional file encryption features. A further investigation unveiled how Cerber is after browser passwords and Bitcoin wallet data, a very strange tactic indeed. Emptying a victim’s Bitcoin wallet and still demanding a BTC payment for the ransomware would seem to be mutually exclusive.

The fact that ransomware is capable of stealing information from the computer files it encrypts is not surprising. These malware tools successfully check the contents of all files, and keeping a copy of anything relevant makes a lot of sense. However, it is rather uncommon to see this type of malware going after passwords stored in browsers. Cerber can obtain passwords from Internet Explorer, Google Chrome, and Mozilla Firefox alike. A lot of people will not be too pleased with this development.

Furthermore, the new Cerber update ensures that the ransomware will search for data files related to three major Bitcoin wallet applications. This includes data stored by the Bitcoin Core wallet, as well as Multibit and Electrum. Anyone using any of these three wallets on their computer may want to ensure they have a copy of their wallet information at all times. It may be safer to move coins to hardware wallets altogether, as they remain impervious to ransomware attacks for the time being.

Related Post

Not all of the files of interest to Cerber store passwords for the associated Bitcoin wallets. In fact, Electrum has not used an electrum.dat file to store wallet information since 2013. It appears Cerber has made a halfhearted attempt to take advantage of novice Bitcoin users who may be running much older installations of Bitcoin wallet software. It is also certainly possible that the ransomware developers simply copied these features from another tool looking to steal Bitcoin wallet data.

Most ransomware developers are constantly looking for new ways to steal even more money. Since the majority of victims will never pay the ransom demand in the first place, stealing login credentials and Bitcoin wallet information may be a viable option — assuming the code implemented actually makes sense.

Cerber is not the first malware to make use of infostealer features. This trend dates back all the way to April of 2015, and multiple versions of popular ransomware have tried to obtain information over the years. CryptXXX was the first to implement Bitcoin wallet stealing features, although it is still unknown whether or not those efforts were successful in the end. This development provides just another example of why Bitcoin users should be well aware of the risks out there and take the necessary precautions. Hardware wallets are a secure storage option which may be worth exploring.

JP Buntinx

JP Buntinx is a FinTech and Bitcoin enthusiast living in Belgium. His passion for finance and technology made him one of the world's leading freelance Bitcoin writers, and he aims to achieve the same level of respect in the FinTech sector.

Share
Published by
JP Buntinx

Recent Posts

Retail Traders Panic Sell During ‘Fake Dip’; Whales Hold Tight to SOL, DTX, and SHIB for a Millionaire-Maker Bull Run

Solana (SOL): A Strong Ecosystem Despite Volatility Solana (SOL) has been all over the place…

18 mins ago

Llama 3.2 Predicts Price For Dogecoin: $2 Peak By 2025 And $5 Rally For DTX Exchange This Winter

Cryptocurrency trends are keen on the forecast that was recently released by Llama 3.2 model…

58 mins ago

Crypto Whale Sparks 8x Surge In $OPK Price with Massive Buy-in

A mysterious crypto whale, who previously invested 9,600 SOL into tokens $Pnut and $FRED, has…

3 hours ago

Early ENS Investor Transfers $2.47M To Binance Amid Upcoming Token Unlocks

An early investor linked to the $ENS token recently transferred 154,000 ENS tokens, valued at…

3 hours ago

Wintermute’s Memecoin Strategy: BABYDOGE Ranks Among Top 3 Holdings

In a surprising turn, $BABYDOGE has climbed to the top three in Wintermute’s memecoin holdings…

3 hours ago

$Pnut’s Meteoric Rise: How A Tragic Squirrel Inspired A Memecoin Sensation

The $Pnut memecoin recently soared past a $120 million market cap, creating unexpected wealth for…

3 hours ago