The Emotet botnet now infects with a malicious module that steals credit card information from Google Chrome user profiles. After stealing the data (name and surname of the cardholder, expiration date, number), the malware sends this data to third-party C&C servers.

“On June 6, Proofpoint experts discovered a new Emotet module delivered by the E4 botnet. To our surprise, it turned out to be an infostealer for stealing bank card data, which only attacks users of the Chrome browser. The collected data is sent to different C&C server than the one from which the module loader is distributed,” Proofpoint Threat Insights said.

Source: securitylab.ru