Hackers are coming again, poised to extract cryptocurrency and break into Steam and Discord accounts. And then they will tarnish the name of the purest and most malicious bear on the planet, Panda.

Distributed via phishing emails and Discord links, the "Panda Stealer" is eager to extract cryptocurrency-related data from your machine, Bytecoin, and Litecoin keys and addresses are all compromised, but there is no mention of other currencies being affected (via Tom's Hardware).

The malware utilizes fileless distribution methods to avoid detection, but also has a taste for NordVPN, Telegram, Discord, and Steam details, taking screenshots, stealing passwords and card credentials, and using virtual and proverbial They can raid both cookie jars.

Requests for business quotes are usually how this software masquerades as your inbox. Clicking on it will begin downloading an XLSM or XLS file. The malware sends formulas disguised as PowerShell commands to your system, giving you permission to access paste.ee to download more PowerShell commands and obtain super-secret information in the blink of an eye.

An attempt was made to track down the source IP of this virus, only to locate a rented Shock Hosting virtual server, but it was reported and the server was suspended. However, that probably won't help much.

Most likely, Panda Stealer is a variant of Collector Stealer, and cracked downloads are freely available on the net; a VirusTotal browse shows 264 similar malware, with many servers and Discord is expected to be a likely method for its transfer among crooks seeking to steal your cryptocurrency wealth and Steam wallet funds.

So, as always, be very careful when clicking. And be sure to get one of the best anti-virus programs, just in case.