Rootkit-enabled spyware dubbed Scranos is a work in progress and is evolving, testing new components and regularly making an improvement to old components. The main dropper steals browser cookies and login credentials from Google Chrome, Chromium, Mozilla Firefox, Opera, Microsoft Edge, Internet Explorer, Baidu Browser and Yandex. Other payloads can even interact with various websites on the victim’s behalf, such as Facebook, YouTube, Amazon, and Airbnb. The oldest sample of this malware traced back to November 2018, with a massive spike in December and January.
Source: https://thehackernews.com/2019/04/scranos-rootkit-spyware.html