This credit card-stealing malware is spreading like wildfire

A new, very dangerous malware called “Erbium” has been doing the rounds for the past few months and it is very likely to spread to new channels.

Erbium is an information stealing tool that focuses on passwords, credit card details, cookies, cryptocurrency wallets and more. Unfortunately, it’s widely available, meaning it could be used in new ways in the future.

Erbium, although it seems to be used on a small scale at the moment, has a lot of potential – and that’s scary. For now, this information-stealing malware is being shared under the guise of illegal games and cheats for popular titles. However, due to its nature, it can spread like wildfire as Erbium is a Malware-as-a-Service (MaaS) – meaning pretty much anyone can get their hands on it.

Initially, Erbium cost only $9 a week, but now it costs $100 a month or $1,000 for a one-year license. For that price, threat actors get access to customer support, updates, and most importantly, the tool itself, with its full set of capabilities.

Initially spotted in August 2022 by Cyfirma, hidden in game cracks, the malware has a lot of power. It can steal data found in Chromium and Gecko-based browsers, including passwords, cookies, auto-fill form information, and credit card information. In addition, it targets cryptocurrency users by trying to steal data from their wallets as long as they are installed as a browser extension.

That’s not all though – Erbium can also steal cold cryptocurrency wallets such as Exodus, Atomic, Bytecoin, Ethereum and more. In addition, it can steal two-factor authentication codes from various password and 2FA managers, such as Trezor, EOS Authenticator, Authy 2FA, and Authenticator 2FA.

Erbium steals Telegram authentication files, Steam and Discord tokens, and screenshots from every connected monitor. Since all these things are stolen, the threat actors get a full view of what has been extracted from the victim.

This malware, which is actually still cheap despite the price hike (costs about a third of RedLine stealer, according to Bleeping Computer), is price-competitive and gets a lot of praise on various hacker forums. Given how much it can do, it’s likely someone will eventually work it into something other than just game cracks, and then it’ll probably become more widespread.

How to stay safe?

Andrew Brookes/Getty Images

If you want to make sure you’re not at risk, all you need to do at this point is don’t download illegal files (such as cracked games or bots for games). However, it’s a good idea to stay vigilant and make sure you use one of the best antivirus software, keep it up to date and scan every file you download. If you own cryptocurrency, consider moving your funds to a completely offline cold wallet instead of a desktop wallet.

Gamers are often targeted by malware. Recently, we’ve seen Genshin Impact used as a gateway to password stealing, and the game doesn’t even need to be installed on your PC for this trick to work. That is why it is important to use anti-malware software and scan it regularly.

Leave a Comment