NCSC calls attention to Citadel malware
The National Cyber Security Centre (NCSC) is currently researching the Citadel malware toolkit. We have already recommended changing all usernames and passwords.
Because the malware had access to the entire system, we must assume that other information could have been stolen. Further investigation has underscored this risk.
We have now obtained more information about the functionalities of the malware. Citadel hunts for login data (used and saved in applications, browsers and FTP programs). It also collects client certificates.