Ransomware FTCODE has added new capabilities, including the ability to swipe saved web browser and email client credentials from victims. New versions of the ransomware now sniff out saved credentials for Internet Explorer, Mozilla Firefox, Mozilla Thunderbird, Google Chrome and Microsoft Outlook. FTCODE is a PowerShell-based ransomware that targets Italian-language users. It’s unclear how many victims have been targeted as part of FTCODE s recent campaign; Threatpost has reached out to researchers for more details.
Source: https://threatpost.com/ftcode-ransomware-steals-chrome-firefox-credentials/152022/