Arkei

Damage potential: Exposure of personal data, identity theft, financial fraud, financial loss

Overview

Arkei is a type of information stealer malware that targets Windows operating systems. Once on a system, Arkei extracts sensitive information such as saved passwords, browser cookies, and cryptocurrency wallets. Cybercriminals can use the stolen data to hijack emails and online accounts, make unauthorized transactions, or gain further access to other systems the victim is part of.

Possible symptoms

Arkei operates discreetly, often slowing down the system performance and changing browser behavior. Other symptoms of Arkei infection include:

• Unusual system and network activity

• Unexpected changes in browser settings

• Unfamiliar archive files (e.g. ZIP, RAR), PDF documents, or executable files (.exe) on the system

• Suspicious activity on online accounts

• Unexpected money transfers from bank accounts or crypto wallets

Sources of infection

Arkei can infect a device in many ways. Here are the most common ones:

• Malicious email attachments or links

• Malware-infected ads

• Software that includes Arkei in the setup

• Drive-by downloads (unintentional download of malware) from compromised websites

Protection

• Keep your operating system and all software up-to-date.

• Use a reputable antivirus and anti-malware solution with real-time protection enabled.

• Avoid downloading files or clicking on links from unknown sources.

• Use NordVPN’s Threat Protection to scan downloads for malware and block malware-infected websites.

• Enable two-factor authentication (2FA) on all your online services to reduce the risk of hackers using accounts, even if they have your login credentials.

• Regularly backup your data to an external source.