Google Chrome is Abused to Deliver Malware as ‘Legit’ Win 10 App

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
8,963
Content source
https://threatpost.com/chrome-deliver-malware-as-legit-win-10-app/175884/
Crooks behind a newly identified malware campaign are targeting Windows 10 with malware that can infect systems via a technique that cleverly bypasses Windows cybersecurity protections called User Account Control (UAC).

Researchers from Rapid7 recently identified the campaign and warn the goal of the attackers is to extricate sensitive data and steal cryptocurrency from the targeted infected PC.

Andrew Iwamaye, Rapid7 research analyst, said that the malware maintains persistence on PC “by abusing a Windows environment variable and a native scheduled task to ensure it persistently executes with elevated privileges.”

Iwamaye wrote in a blog post published Thursday, the attack chain is initiated when a Chrome browser user visits a malicious website and a “browser ad service” prompts the user to take an action. Inquiries as to what the researcher is identifying as a “browser ad service” have not been returned as of this writing.
Click to expand...
threatpost.com

Google Chrome is Abused to Deliver Malware as Legit Windows 10 App

Malware delivered via a compromised website on Chrome browsers can bypass User Account Controls to infect systems and steal sensitive data, such as credentials and cryptocurrency.
threatpost.com threatpost.com
 
  • Like
  • Wow
  • +Reputation
Reactions: Jack, Deletedmessiah, Gandalf_The_Grey and 5 others
You must log in or register to reply here.

Similar threads

upnorth
    • +Reputation
    • Like
New Linux Malware Combines Unusual Stealth with a Full Suite of Capabilities
Replies
1
Views
450
News Archive
mlnevese
mlnevese
Gandalf_The_Grey
    • Like
    • +Reputation
Web browser app mode can be abused to make desktop phishing pages
Replies
0
Views
290
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
upnorth
    • +Reputation
    • Thanks
    • Like
Legit Android apps Poisoned by sticky 'Zombinder' Malware
Replies
0
Views
376
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top