JesterStealer provides theft of authentication and other data.
Government team responds to computer emergencies Ukraine's CERT-UA, which operates under the auspices of the State Special Communications Service, has revealed the fact of mass distribution of e-mails on the topic of “chemical attack”. This was reported by the State Special Communications Service in a telegram channel.
Cybercriminals are sending new dangerous letters to steal data. The emails contain a link to an XLS document with a macro that could be compromised by JesterStealer.
CERT-UA experts note that files are downloaded from compromised web resources.
“JesterStealer provides theft of authentication and other data from Internet browsers, MAIL/FTP/VPN clients, cryptocurrency wallets, password managers, messengers, gaming programs, etc. The stolen data is transmitted to the attacker in the Telegram. After the work is completed, the program will be removed, “the State Special Communications Service reports.
Read also: The United States promises $ 15 million to help detain Russian hackers
The State Special Communications Service has stated that Russian hackers are increasingly attacking ordinary Ukrainians. In addition, the number of information and psychological operations against the population of Ukraine on social networks and messengers is growing.
