A new malware is affecting Google Chrome, enabling access to login tokens and accounts

Reports highlight a critical vulnerability affecting Google Chrome users, allowing access to Google accounts and login tokens. This malware bypasses Chrome's security and can extract and decrypt tokens from the local database. It can bypass two factor authentication and continues to gain access even after changing passwords.

The vulnerability was first reported in mid November and has been exploited by six malware groups. Some sellers claim to have updated the exploit to counter Google's security measures. Recent reports from BleepingComputer, CloudSEK, and Hudson Rock has reported a new critical vulnerability affecting Google Chrome users.

The new malware appears to be bypassing Chrome's security and allowing access to Google account and also login tokens stored in the browser. What is this new malware? This security flaw involves the installation of malware on desktops, allowing attackers to extract and decrypt login tokens stored in Chrome's local database.

The compromised tokens are then utilised to trigger requests to a Google API , typically employed by Chrome for account synchronisation across Google services. This process results in the creation of persistent Google cookies, facilitating unauthorised access to user accounts. This new vulnerability is particularly different because it has the ability to bypass two factor authentication as well.

Also, it continues to gain access despite changing the password. This raises concerns about the efficacy of this additional security layer. The attack leverages a key infusion from restore files, enabling the reauthorisation of cookies even after a password change. The alarming aspect is that this "restoration" process can be repeated multiple times without the victim's awareness of compromise.

This vulnerability, in particular, isn't new. It was initially surfaced in mid November and the report has mentioned a total of six malware groups with access to and actively selling this vulnerability. Some sellers claim to have updated the exploit to counter the security measures implemented by Google, adding a layer of complexity to mitigation efforts.

What's the solution Right now, there's no details available on how to stay protected against it. We expect a good malware software or keeping the entire device protected can help. Explore Your Financial Landscape with Personalized Credit Insights. FOLLOW US ON SOCIAL MEDIA Visual Stories Previous Here’s how many users top telcos have in India Gadgets 5G smartphones with 10GB or more RAM under Rs 25,000 Gadgets 5G smartphones launching in 2024 Gadgets Top 5 AR/VR headset companies worldwide in Q3 23 Gadgets 5G smartphones with in display fingerprint sensor Gadgets 10 ‘most popular’ YouTube Shorts in 2023 Gadgets 5G phones with IR blaster under Rs 30,000 Gadgets ISRO’s upcoming missions in 2024 Gadgets Reliance JioTV Premium subscription plans launched: All the details Gadgets 10 5G smartphones under Rs 35,000 Gadgets Next 1 2 3 Elections Chhattisgarh CM News MP CM News Rajasthan Election Results MP Election Result 2023 Chhattisgarh Election Result Mizoram Election Result TOP TRENDS India Covid Cases ISRO XPoSat launch Horoscope Today David Warner Happy New Year 2024 Wishes PM Modi Ayodhya Visit.