The developers of the malware, known as Infostealer, they have released updates that allow you to neglect the feature in the mid of the application to be connected to the Chrome os, which was introduced with the version of the 127 of the browser.
- Google Chrome: Infostealer overrides the enkriptimin browser
For those who don't know, “the Cpa-Bound Encryption is a feature of the browser to Google, made for the enkriptuar kukit, and the passwords of the saved by the use of a service in Windows, which functions as the privileges on the system. It does not allow the malware to steal it, which is maintained on Chrome os, as it is being executed with the permissions of the user to be registered to bypass this protection, you must have privileges on the system, or to the out code to the web browser.
The researchers of security, however, have seen more development of the information vjedhësve to boast of, that are applied to a drift of working means: the MeduzaStealer, Whitesnake, Lumma Stealer, Lumar (PovertyStealer), Vidar Stealer, StealC.
In particular, the version of the last of the Lumma Stealer has confirmed that it is able to bypass the feature of mid to Chrome 129.
How it is achieved exactly the bypassing on the enkriptimin has not yet been released, but the authors of the malware Rhadamanthys did that to them, it took 10 minutes to do it.
In any case, Google is well aware of the scenario, the new, and says that it is working to combat the situation as soon as possible. The company said it continues to work actively with the vendor of the operating system and the VA to ask any more reliable to address the new types of attacks.
Discussion about this post