Google Chrome malware alert – malicious software can steal your saved credit card payment details and stored files

USERS of Google's Chrome and Mozilla's Firefox web browsers should be extra vigilant about their stored credit card details after the discovery of a new malware.

The shady software can hoover up saved payment details, passwords and files, warn security researchers from Proofpoint.

And the cyber-threat is tipped to "evolve and grow" to target scores of users.

The "Vega Stealer" malware infects PCs through phishing emails (which trick you into handing over your details) that seem to be aimed at advertising and marketing professionals.

It focuses on scooping your saved payment credentials in Google Chrome – the type of info you may have stored using auto-fill when making an online purchase – and harvesting specific files in Firefox.

But it doesn't stop there.

According to ZDNet, the malware also takes a screenshot of the infected machine's screen and scans for any documents ending in .doc, .docx, .txt, .rtf, .xls, .xlsx, or .pdf.

Fortunately, the phishing campaign being used to spread the software is not very sophisticated.

Emails include subject lines such as "Online store developer required" and most are being circulated via distribution lists like"[email protected]" and "[email protected]".

While the threat is currently being described as small-scale, Proofpoint warns that this could just be the "first stage" of the attack.

Vega Stealer is the latest iteration of another strain of malware called August Stealer that first emerged in December 2016.

That virus targeted saved passwords and other sensitive data on Chrome, Firefox, and the Opera web browser.

Proofpoint is urging users to be on the lookout for suspicious emails that may suddenly pop up in their inbox.

"Corporate credential theft often allows threat actors to establish a beachhead for further penetration into corporate networks and systems," writes the cyber-security firm.

Most read in tech


Nasa reveals NEW plan to stop 'doomsday asteroid' from wiping out humanity


SpaceX rocket is about to CRASH into the Moon after '7 years of chaos'


Amazing WhatsApp update revealed – but it ONLY works on an iPhone


Huge iPhone upgrade revealed – but Apple fans all have the same complaint

It adds: "While Vega Stealer is not the most complex or stealthy malware in circulation today, it demonstrates the flexibility of malware, authors, and actors to achieve criminal objectives.

"Because the delivery mechanism is similar to more widely distributed and mature threats, Vega Stealer has the potential to evolve into a commonly found stealer. We will continue to monitor this threat as it propagates in the wild."

Source: Read Full Article