Discord users, beware your credentials getting stolen by ransomware.
While the Discord platform originally found favor as a community-building tool for online gamers, it’s now being used by many different types of online communities, including cryptocurrency and NFT enthusiasts, to communicate via VoIP and instant messaging.
Enter attackers, seeking to steal individuals’ Discord tokens from their PCs, lately by using a strain of ransomware called AxLocker.
Threat-intelligence firm Cyble spotted the new crypto-locking malware, which it says uses “the AES encryption algorithm to encrypt files,” followed by victims receiving a de rigueur ransom note. It says the ransomware doesn’t seem to be tied to a dedicated data-leak site, and also appears to be offered for sale outright, rather than being developed by a ransomware-as-a-service operation that provides it to affiliates in return for a cut of every ransom payment.
