Credentials

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data – Go Health Pro

by
Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data – Go Health Pro

The threat actors known as Golden Chickens have been attributed to two new malware families dubbed TerraStealerV2 and TerraLogger, suggesting continued development efforts to fine-tune and diversify their arsenal. “TerraStealerV2 is designed to collect browser credentials, cryptocurrency wallet data, and browser extension information,” Recorded Future Insikt Group said. “TerraLogger, by contrast, is a standalone keylogger. … Read more

New Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto Credentials – Go Health Pro

by
New Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto Credentials – Go Health Pro

Mar 29, 2025Ravie LakshmananThreat Intelligence / Mobile Security Cybersecurity researchers have discovered a new Android banking malware called Crocodilus that’s primarily designed to target users in Spain and Turkey. “Crocodilus enters the scene not as a simple clone, but as a fully-fledged threat from the outset, equipped with modern techniques such as remote control, black … Read more

Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials – Go Health Pro

by
Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials – Go Health Pro

Mar 10, 2025Ravie LakshmananCybersecurity / Malware Cybersecurity researchers have demonstrated a novel technique that allows a malicious web browser extension to impersonate any installed add-on. “The polymorphic extensions create a pixel perfect replica of the target’s icon, HTML popup, workflows and even temporarily disables the legitimate extension, making it extremely convincing for victims to believe … Read more

Fake DocuSign docs used to secure corporate credentials in mishing campaign – Go Health Pro

by
Fake DocuSign docs used to secure corporate credentials in mishing campaign – Go Health Pro

A targeted mobile phishing (mishing) campaign was observed that leveraged a DocuSign impersonation scheme that aimed to harvest corporate credentials from company executives. ZimperiumLabs reported Dec. 18 that the DocuSign campaign was similar to a pattern of spear phishing attempts that enterprises have been tracking in which attackers specifically target the mobile devices of their … Read more

Yearlong supply-chain attack targeting security pros steals 390K credentials – Go Health Pro

by
Yearlong supply-chain attack targeting security pros steals 390K credentials – Go Health Pro

Screenshot showing a graph tracking mining activity. Credit: Checkmarx But wait, there’s more On Friday, Datadog revealed that MUT-1244 employed additional means for installing its second-stage malware. One was through a collection of at least 49 malicious entries posted to GitHub that contained Trojanized proof-of-concept exploits for security vulnerabilities. These packages help malicious and benevolent … Read more