Security News > 2021 > February > Masslogger Swipes Microsoft Outlook, Google Chrome Credentials
Cybercriminals are targeting Windows users with a new variant of the Masslogger trojan, which is spyware designed to swipe victims' credentials from Microsoft Outlook, Google Chrome and various instant-messenger accounts.
When the Masslogger variant launched its infection chain, it disguised its malicious RAR files as Compiled HTML files.
These emails contained RAR attachments - however, of note, while the typical filename extensions for RAR files is.
The files were named with the pattern "r00," with the numbers growing per file in each email.
The Compiled HTML file format is used for help documentation - the files are compiled and saved in a compressed HTML format.
The Masslogger payload contains the functionality to target and steal credentials from the following applications: Pidgin, the FileZilla File Transfer Protocol client, the Discord group-chatting platform, NordVPN, Outlook, FoxMail, Firefox, Thunderbird, QQ Browser and Chromium-based browsers.
News URL
https://threatpost.com/masslogger-microsoft-outlook-google-chrome/164011/
Related news
- New details reveal how hackers hijacked 35 Google Chrome extensions (source)
- Google Chrome is making it easier to share specific parts of long PDFs (source)
- Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking (source)
- Google Chrome's AI-powered security feature rolls out to everyone (source)
- Microsoft Bing shows misleading Google-like page for 'Google' searches (source)
- Microsoft fixes bug causing Outlook freezes when copying text (source)
- Microsoft fixes bug causing Outlook to freeze when copying text (source)
- Criminal IP: Bringing Real-Time Phishing Detection to Microsoft Outlook (source)
- Microsoft to force install new Outlook on Windows 10 PCs in February (source)
- Google Ads Users Targeted in Malvertising Scam Stealing Credentials and 2FA Codes (source)