"A malicious trojan that want unreported has managed to steal 1.2TB of personal data including passwords, cookies and files from unsuspecting users online... The malware was successfully able to steal 26m credentials from around 1m different websites... The malware also stole over 6.6m files stored on the desktops and Downloads folders of victims including text files, image files and other documents..." https://www.techradar.com/news/this-unreported-trojan-managed-to-steal-12-tb-of-personal-data
The article confirms something else. Where you can plainly see that trend will always continue due to the fact that every new year "noobs" come online with their own machines and don't know a lick about SERIOUS security preventions that can at least be drastically limited if not curtailed altogether such stealth intrusions with the proper attention=Lots of effort and TIME. (Time most of those users will never spend shoring up the machines)
Is this trojan nameless or what? But yes, no surprise, AV's will often don't block data exfiltration if they can't identify the malware. And the thing is, you won't even notice that data has been stolen. So a bit of extra protection from anti-loggers is always helpful. And of course you shouldn't be downloading cracked software in the first place.