
New Malware Harvests Saved Credentials on Firefox, Chrome
0 comments
Researchers from Proofpoint recently uncovered a malware being used in a phishing campaign called Vega Stealer which is being used to steal credentials and financial data from Chrome and Firefox browsers.
A variant of August Stealer, the new malware is said to have upgraded capabilities which includes a new network communication protocol and Firefox stealing functionality which nabs password and key files – “key3.db” “key4.db”, “logins.json”, and “cookies.sqlite”.
Vega Stealer also able to take screenshots, scan the infected computer and swipe .doc, .docx, .txt, .rtf, .xls, .xlsx, or .pdf files.
Source: ZDNet