The LokiBot trojan has seen a big spike in activity since August, the Feds are warning. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that the info-stealing trojan is seeing a surge across the enterprise landscape. LokiBot targets Windows and Android endpoints, and spreads mainly through email (but also via malicious websites, texts and messaging) It typically goes after credentials (usernames, passwords, cryptocurrency wallets and more), as well as personal information.
Source: https://threatpost.com/cisa-lokibot-stealer-resurgence/159495/