Society

New viruses threatening “Chrome” users: how to protect yourself?

19th September 2024
2 minutes read
New viruses threatening "Chrome" users: how to protect yourself?
New viruses threatening "Chrome" users: how to protect yourself?

Chrome” users are facing an unusual attack aimed at stealing their credentials by putting them in a situation where they cannot proceed without entering their username and password.

 

A cunning method 

A recent study has revealed how cybercriminals are using a new, sneaky technique to force “Chrome” browser users to disclose their Google account passwords.

This new credential theft campaign, using malware called “StealC”, freezes the user’s browser while blocking the “F11” and “ESC” keys to prevent them from escaping the frozen screen.

The only thing the browser will display is a login window, often for the “Google” account itself.

This way, hackers force the victim to enter their credentials into the browser, and once they do, the malware spreads to steal credentials and take over passwords from “Chrome‘s” credential storage, delivering them to the attackers.

Another threat 

Researchers have identified a new variant of a well-known banking Trojan called “TrickMo”, which now pretends to be the “Google Chrome” browser app for Android.

When this malicious app is installed, the victim sees a warning that “Google Play” needs to be updated, along with a confirmation dialog box. In reality, it installs another app called “Google Services”, which requests user permissions and guides them to enable the app’s accessibility services.

Once this is done, it grants attackers the elevated permissions needed to intercept SMS messages to obtain two-factor authentication codes. “TrickMo” then displays a screen that looks like a real login page to capture account credentials.

To evade detection, the new “TrickMo” variant uses a “Zip” file archive technique, which may make it difficult for automated analysis tools used by cybersecurity defenders to inspect the file’s contents due to the distorted structure, complicating the analysis process significantly.

Protection measures 

In case your device is infected with the “StealC” variant, users are advised to try shutting down via the power button, then restart in safe mode using the “F8” key, and perform a full system scan to prevent the malware infection from reoccurring.

As for “TrickMo”, the advice is simple and often repeated: do not download Android applications from any source other than the official “Play” store.

19th September 2024
2 minutes read
Show More

Related Articles

In a Detour, Musk Reinstates "X" Platform in Brazil

In a Detour, Musk Reinstates “X” Platform in Brazil

19th September 2024
Benefits and Risks: How Artificial Intelligence Affects Children

Benefits and Risks: How Artificial Intelligence Affects Children

19th September 2024
In a Treehouse... An Octogenarian Leads an "Unconventional" Lifestyle

In a Treehouse… An Octogenarian Leads an “Unconventional” Lifestyle

18th September 2024
Followed by Millions... Female Hippopotamus Causes a Stir in Thailand 

Followed by Millions… Female Hippopotamus Causes a Stir in Thailand 

18th September 2024
"The situation is catastrophic" : Myanmar Floods Leave 226 Dead

“The situation is catastrophic” : Myanmar Floods Leave 226 Dead

18th September 2024
Belgium Opens a Center for Safe Drug Use

Belgium Opens a Center for Safe Drug Use

17th September 2024
Due to drought, a decision to cull 200 elephants in Zimbabwe

Due to drought, a decision to cull 200 elephants in Zimbabwe

17th September 2024
A historic step... Success of the first spacewalk

A historic step… Success of the first spacewalk

17th September 2024
Turning Notes into Voice: A New AI Feature from Google

Turning Notes into Voice: A New AI Feature from Google

16th September 2024
New AI Models Capable of "Thinking"

New AI Models Capable of “Thinking”

14th September 2024
Back to top button
Verified by MonsterInsights