Hackers Are Releasing Fake Game Cracks and Pirated Software Laced With Password-Stealing Erbium Malware; All You Need to Know

There’s a new malware in town, and it can steal the victims’ credit card details and cryptocurrency wallets. The information-stealing malware called “Erbium” is injected in fake cracks and cheats for popular games as well as pirated software.

What’s worse is that since Erbium is a Malware-as-a-Service (MaaS), subscribers can get access to the harmful program and target anyone they want.

Cluster25 researchers first reported about Erbium, and a later report by Cyfirma reveals more about the nature of the malware.

Modus operandi

It is not known when Erbium was first deployed, but it has been spotted on Russian forums since July 2022. Initially, it cost as low as $9 to get a weekly subscription to the malware, but since it blew up in popularity in the cybercrime community, the price is now set to $100 per month or a yearly license for $1000.

Erbium steals data such as passwords, cookies, credit/debit card details, and autofill information stored in Chromium and Gecko-based web browsers such as Google Chrome, Firefox, Pale Moon, Thunderbird, BlackHawk, Cyberfox, and K-Meleon.

The malware has the capability to steal data from cryptocurrency wallets that are installed as extensions on web browsers. It can even steal data from two-factor and multifactor authentication services like Authenticator 2FA, Authy 2FA, and EOS Authenticator and password management software like Trezor.

India infected

It has been reported by Cluster25 that within a month, Erbium can be observed spreading around the world at an “increasing level.” The following countries are potentially infected with variants of this malware family: India, the United States, Colombia, Portugal, Spain, Italy, France, Romania, Lebanon, Turkey, Vietnam, and Malaysia.

We recommend readers not download any kind of pirated software or click on any suspicious links. Use an anti-malware solution to scan all your downloaded files to stay safe.