Chrome users tricked into giving up Google passwords by hackers

September 17, 2024
1 min read




Article Summary

TLDR:

  • Hackers are using a new technique called StealC to force Chrome users to reveal their Google account passwords.
  • Another threat called TrickMo pretends to be the Google Chrome app for Android to steal account credentials.

A new credential-stealing campaign using malware called StealC has been discovered, where hackers force Chrome browser users into kiosk mode and display a fake login window for Google accounts. The victim’s credentials are entered directly, allowing the malware to steal them. This technique has been in use since at least August 22 and is a new way for threat actors to gain access to valuable account information. In another attack, a variant of the TrickMo Trojan pretends to be the Google Chrome app for Android, tricking users into providing permissions that allow the interception of SMS messages and two-factor authentication codes.

When mitigating these attacks, users are advised to try hotkey combinations to exit kiosk mode, including Alt + F4, Ctrl + Shift + Esc, Ctrl + Alt +Delete, and Alt + Tab. Additionally, users should only download Android software from the official Play Store to avoid falling victim to TrickMo attacks. Overall, it is important for Chrome users to update their browsers and remain vigilant against new threats targeting browser users.


Latest from Blog

Top 20 Linux Admin Tools for 2024

TLDR: Top Linux Admin Tools in 2024 Key points: Linux admin tools streamline system configurations, performance monitoring, and security management. Popular Linux admin tools include Webmin, Puppet, Zabbix, Nagios, and Ansible. Summary

Bogus job tempts aerospace, energy workers

TLDR: A North Korean cyberespionage group is posing as job recruiters to target employees in aerospace and energy sectors. Mandiant reports that the group uses fake job descriptions stored in malicious archives