The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a new security advisory warning the federal agency and the private sector of a surge in the attacks employing the LokiBot malware since July 2020. The Lokibot malware is an infostealer that has been active since 2015. It is involved in many malspam campaigns aimed at harvesting credentials from web browsers, email clients, and admin tools as well as used to target cryptocoin-wallet owners.