A Cerber ransomware update adds new exploits, which allows it to steal wallet files. It then tries to steal saved passwords from browsers.
According to recent reports, Cerber ransomware dominated the malware marketplace in the first months of 2017, reducing Locky to irrelevance.
The latest version of Sage ransomware was recently observed, and it's asking victims to pay $2,000 as part of its new campaign.
Security-focused web browser Tor was compromised by browser malware last week. Researchers also found ransomware hiding on the Tor network.
Locky ransomware is using Brazil as a testing ground for some new extortion techniques, but it's not the first malware to wreak havoc in the country.
Cerber ransomware's authors updated to a new variant by messing around with the ransomware decryption used in their criminal efforts.
Researchers recently discovered that the Cerber ransomware is generating new hashes every 15 seconds to avoid detection by security tools.