Researchers from Proofpoint recently uncovered a malware being used in a phishing campaign called Vega Stealer which is being used to steal credentials and financial data from Chrome and Firefox browsers.

A variant of August Stealer, the new malware is said to have upgraded capabilities which includes a new network communication protocol and Firefox stealing functionality which nabs password and key files –  “key3.db” “key4.db”, “logins.json”, and “cookies.sqlite”.

Vega Stealer also able to take screenshots, scan the infected computer and swipe .doc, .docx, .txt, .rtf, .xls, .xlsx, or .pdf files.

Source: ZDNet

Leave a Comment

Your email address will not be published. Required fields are marked *