top of page

Chrome Users Beware: Hackers Employ Devious Tactic to Steal Google Passwords

  • Writer: tech360.tv
    tech360.tv
  • Sep 16, 2024
  • 2 min read

A new hacking campaign is using malware called StealC to steal Google account passwords from Chrome users. The attack locks users in a full-screen kiosk mode, preventing escape and displaying only a Google login window. The technique relies on user frustration to compel victims to enter their credentials voluntarily.


Hackers Force Chrome Users To Hand Over Google Passwords
Credit: Getty Images

The credential-stealing campaign, which utilises malware known as StealC, exploits a combination of browser manipulation and user frustration to achieve its nefarious goals.


The attack begins by locking the user's Chrome browser in kiosk mode, a full-screen deployment that prevents normal navigation. Crucially, the hackers block both the F11 and ESC keys, eliminating the usual methods of escaping this restrictive view. With the victim trapped, the only thing visible on the screen is a login window, typically for their Google account.


This devious method represents a significant evolution in the ongoing battle for access to valuable Google accounts. These accounts are prized by cybercriminals as they often serve as gateways to sensitive information in Gmail inboxes or even crypto-wallet passphrases. While previous attacks have employed sophisticated techniques such as optical character recognition or SMS interception, StealC takes a surprisingly simple yet effective approach: annoying users into compliance.


The Open Analysis Lab (OALabs) researchers, who uncovered this campaign, report that it has been active since at least 22 August. Their analysis confirms that the hackers essentially force victims to enter their credentials into the browser, from where the malware can then steal them.


Interestingly, the initial 'credential flusher' component of the attack isn't actually responsible for stealing the credentials. Instead, it applies the necessary pressure to frustrate users into entering their account details voluntarily. Once this is accomplished, the StealC malware deploys to harvest the passwords from Chrome's credential store and transmit them to the attackers.


The researchers note that this campaign relies on a combination of existing hacking tools and techniques. At its core is the Amadey hacking tool, which has been in circulation for at least six years and is responsible for loading the malware. The Loader Insight Agency, a threat intelligence partner of OALabs, helped map out the typical attack sequence.

• A new hacking campaign is using malware called StealC to steal Google account passwords from Chrome users.

• The attack locks users in a full-screen kiosk mode, preventing escape and displaying only a Google login window.

• The technique relies on user frustration to compel victims to enter their credentials voluntarily.


Source: FORBES

Technology increasingly permeates every facet of our lives, making informed decision making an essential pursuit. We bridge this gap by combining the precision of AI with the irreplaceable discernment of human expertise. Our team produces rigorous product reviews that offer unique insights, honest critiques, and trustworthy recommendations. We also leverage AI to synthesise complex news from reliable sources into clear, actionable updates, ensuring that every story is carefully fact checked by our editorial staff before publication. Accuracy remains our priority. Should you identify any discrepancies, please contact us at editorial@tech360.tv. Your feedback is a vital part of our process in maintaining the high standards our readers deserve.

Tech360tv is Singapore's Tech News and Gadget Reviews platform. Join us for our in depth PC reviews, Smartphone reviews, Audio reviews, Camera reviews and other gadget reviews.

  • YouTube
  • Facebook
  • TikTok
  • Instagram
  • Twitter
  • LinkedIn

About Us

Privacy

Disclaimer

info@tech360.tv

© 2021 tech360.tv. All rights reserved.

bottom of page