It is not a good idea to store your password in Chrome as hackers can target remote workers. According to security experts, hackers are targeting people working from home by exploiting the passwords stored in their web browsers.
The practice of storing your password in Chrome or Edge browser is considered to be safe. Though recent findings suggest using such features in any browser over a recent security breach that compromised a company. People working from home in the US and UK are being targeted by hackers during the ongoing coronavirus pandemic.
According to security researchers at AhnLab, an employee working remotely fell victim as they used a VPN to access their company’s network.
The users shared their user credentials innocently with others he was living with, unaware it was already infected by an info-stealing malware called Redline Stealer. Leading to his account being hacked and exposing sensitive data such as user details and passwords from various sites including information to access the company’s VPN.
Later the hackers managed to use the login details to pry on the private business data three months later. To make matters worse the anti-virus installed on the computer failed to detect the malware.
The researchers at AhnLab said, “Although the account credentials storing feature of browsers is very convenient, as there is a risk of leakage of account credentials upon malware infection, users are recommended to refrain from using it and only use programs from clear sources.”
The Redline Stealer malware first made its appearance in March 2020, just when the pandemic started. There has been a spike in scams over the course of COVID-19’s unwelcome arrival. Millions have been targeted by the COVID Pass scams, people are being scammed for money and sensitive data.The Redline Stealer malware is easily available on the dark web, which makes it extremely difficult to trace the incident back to a specific group. One can buy this malware easily for as low as $150 on the dark web.
Electromagnetic Emanations can help Detect Evasive Malware on IoT Devices
New Apache Log4j Update Patch Released for Newly Discovered Vulnerability
Garrett Walk-Through Metal Detectors Can Be Hacked Remotely