Once again, cryptocurrency exchanges are being called to be wary of a threat to their security that could have catastrophic consequences.\u00a0<\/span>While these asset custodians have been kept vigilant over the years thanks to the threat of hacks and other security vulnerabilities that their online platforms might have, a new report is raising concerns over a Trojan that could be able to steal authentication codes and access customers\u2019 funds.\u00a0<\/span><\/p>\n

Cerberus is a Potential Grade-A Threat\u00a0<\/span><\/strong><\/h2>\n

The warning sign was raised by ThreatFabric, a cybersecurity firm based in Amsterdam. The firm, which specializes in information threats concerning the finance industry, explained in a recent\u00a0<\/span>blog post<\/span><\/a>\u00a0that it had discovered a new Trojan known as \u201cCerberus.\u201d As the blog post explained, Cerberus was built to specialize in stealing 2-factor authentication (2FA) codes that are gotten by the Google Authenticator service.\u00a0<\/span><\/p>\n

In the blog post, ThreatFabric explained that it first identified Cerberus back in June 2019, with the Remote Access Trojan unseating the widespread Anubis Trojan as the top Malware-as-a-Service product to be used by hackers on the Dark Web. However, the product was updated last month, with the new version now being able to steal vital data such as 2FA codes saved on Google Authenticator, swipe patterns, and PIN codes for mobile phones.\u00a0<\/span><\/p>\n