You may not know about the EMOTET malware but you should. This malware started as a banking trojan that would steal passwords and accounts from users. However this report from Kryptos Logic shows that this malware has now started including exfiltration to the list of things it can do.
Why is that bad?
Exfiltration is the act of stealing your data. It is one thing to steal account numbers and passwords but yet another to steal all your data. Imagine, you can change passwords and close accounts but stealing your most sensitive data may not be as easy to recover from! Imagine your data on patient records or the credit card information of all your customers. That could certainly be a lot harder to recover from!