1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • This dangerous malware disguises itself as a legit browser extens

    From TechnologyDaily@1337:1/100 to All on Thu Apr 6 12:45:04 2023
    This dangerous malware disguises itself as a legit browser extension to steal your cash

    Date:
    Thu, 06 Apr 2023 11:31:21 +0000

    Description:
    Fake Google Drive extension is simply an infostealer looking to steal money
    or crypto.

    FULL STORY ======================================================================

    Cybersecurity researchers from Trustwave SpiderLabs have discovered a new strain of malware that targets victims cryptocurrency wallets.

    Dubbed Rilide, the malware poses as an extension for Chromium-based browsers such as Google Chrome, Microsoft Edge, Brave, or Opera.

    The malware poses as a legitimate extension for Google Drive, and should people install it on their endpoints , theyd give the malware the ability to monitor their browsing history, grab screenshots, and even inject malicious scripts that would pull all of their money found in cryptocurrency exchanges. Forged dialogs

    What makes this malware unique is its ability to utilize forged dialogs to trick people into giving away their multi-factor authentication keys, and
    then pull cryptos while operating in the background. If the malware spots
    that the user has an account on a cryptocurrency exchange, it will try and make a withdrawal request in the background, while presenting the user with a forged device authentication dialog, to get the 2FA code.

    Usually, cryptocurrency exchanges would also notify the users of withdrawal requests via email, which is also something this malware tries to hide. These email confirmations get replaced on the fly, the researchers said, as long as the user enters the mailbox using the same web browser. The request email is replaced with a device authorization request, tricking the victim into giving away the 2FA code. Read more

    What is phishing and how dangerous is it?


    Phishing emails are seeing a huge rise, so stay on your guard


    Check out the best firewalls out there

    For the researchers, the Rilide stealer is a prime example of how malicious browser extensions are getting more sophisticated, and more dangerous. Both businesses and consumers need to remain vigilant, in a time when too much information can dull our senses, the researchers conclude. Not all identities on the internet are legitimate:

    Informational overload can dull our ability to interpret facts accurately and make us more vulnerable to phishing attempts. It is important to remain vigilant and skeptical when receiving unsolicited emails or messages, and to never assume that any content on the Internet is safe, even if it appears to be. These are the best ransomware protection tools around



    ======================================================================
    Link to news story: https://www.techradar.com/news/this-dangerous-malware-disguises-itself-as-a-le git-browser-extension-to-steal-your-cash


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)