Experts warn AGAINST storing passwords in Chrome as hackers target homeworkers

HACKERS are preying on people working from home for passwords stored in web browsers, 专家声称.

Keeping passwords saved in the likes of Chrome and Edge are pretty common practice and usually considered quite safe.

A worker was unaware the computer they were using to work was already infested with malware

A worker was unaware the computer they were using to work was already infested with malware信用: 盖蒂

They are designed to take the hassle out of remembering login details for every site you use.

But now IT researchers are cautioning against using such features in any browser over a recent security breach that compromised a company.

Bad actors appear to be exploiting the fact office workers in the UK and US are being forced to work from home amid the ongoing coronavirus pandemic.

According to security experts AhnLab, an employee working remotely fell victim as they used a VPN to access their company’s network.

The person was innocently doing their job on a device shared with others they live with, unaware it was already infected with a nasty piece of infostealing malware called Redline Stealer.

This led to sensitive account details and passwords from various sites being stolen, including information to access the company’s VPN.

Most read in News Tech

Millions of iPhone owners urged to check settings or risk Christmas spying horror

I-CRY

Millions of iPhone owners urged to check settings or risk Christmas spying horror

Hackers then used it to login and pry on the private business data three months later.

And worse still, the computer had antivirus software installed but the malware was able to get around it.

Although the account credentials storing feature of browsers is very convenient, as there is a risk of leakage of account credentials upon malware infection, users are recommended to refrain from using it and only use programs from clear sources,” AhnLab said.

Redline Stealer is pretty cheap and easy to get hold of on the dark web, which means it’s hard to trace the incident back to a specific group.

It costs as little as $150/£111 to get hold off.

The malicious tool first appeared in March 2020, right as the pandemic began to spread.

It comes amid a huge spike in scams over the course of COVID-19’s unwelcome arrival.

Millions were targeted by Covid Pass scams conning people out of money and sensitive data, 尽管 phony jabs have also been rife.

The pandemic has been the perfect opportunity for hackers to exploit people stuck indoors

The pandemic has been the perfect opportunity for hackers to exploit people stuck indoors信用: 阿拉米

Google Chrome hack helps to organise your tabs for a better workflow

在其他新闻中, NASA has slammed Russia after a missile it fired into one of its own satellites forced the space station to perform an emergency swerve.

Scientists have figured out how fast a type of dinosaur could runand it would have given Usain Bolt a run for his money.

And Google has confirmed that some of its smartphones are unable to call emergency services due to a software bug.


我们为您的故事付费! 您是否有The Sun Online Tech的故事 & 科学团队? 给我们发电子邮件 tech@the-sun.co.uk