Add SpiderX Wallet on the browser, the Chrome is not what it claims to be. In reality, in actual fact, it is malware designed to steal personal information and kriptovalutat by the user. The researchers of the Cybernews't found it.
Chrome os: the malware is disguised as an add-on steal personal data, and the kriptovalutat
Going into more details, the expansion of the false rob, information, and take the picture from the screen, and the akseson of the story. It was reported fairly quickly, thanks to the campaign, the advertising carried out by a person responsible for a hacker to israel, was identified because he had left a request to open it in Elasticsearch, a search engine and from the analysis of the spread at the level of the company.
“In spite of the executed and the carelessness amateur, actor of the threat and sends tens of thousands of emails spam in a month, and there's a level of infection of 1%. At the time of the discovery, there were over 500 of the victims of the infected, and the campaign is still ongoing,” state the researchers in the Cybernews.
Prior to the threat, hakeri konfiguroi, and tested the infrastructure for using the mail to his address, IP address, and other personal information, all of which allowed for the identification of the attacker.
Once installed, the add-ons related to a server, the WebSocket establishing two-way communication with a web browser. The code interacts with the tabs in Chrome os through the API of chrome.tabs on, and take the picture from the screen every second and sends the collections, the history, the browsing history and the data of the application to the servers.
Prior to unravel the Cybernews, expansion, and with a view to the worst came to the rescue of all the controls.
It should be noted that this is not the first time that the malware is in the fact it is deleted after an add-on to Chrome. Just think, that June, the last 18 enlargements, such were found in the wound.
Discussion about this post