Password Stealing Malware Incognito

Tuesday, November 27, 2012 @ 06:11 PM gHale


Passteal, a piece of malware that steals sensitive information stored in web browsers by relying on password recovery tools, is now going through file sharing websites.

Passteal versions end up disguised as e-books, key generators and even bundled with installer applications, said researchers at Trend Micro.

RELATED STORIES
Europe Domains Host BlackHole
DNS Records Hacked
Best Practices for DKIM Hole
Email Signature Holes Fixed

While older variants relied on PasswordFox to gain access to sensitive browser data, a new version (TSPY_PASSTEAL.B) uses WebBrowserPassView instead. This allows attackers to steal information from Internet Explorer, Firefox, Chrome and Safari.

In order to protect themselves against such threats, users should be aware of what they are downloading from file sharing or BitTorrent websites, especially since this isn’t the only malicious element that’s going around looking like an innocent application.

Also, third-party password manager applications or features such as Firefox’s “master password” are a great way to protect sensitive information against pieces of malware such as Passteal.



Leave a Reply

You must be logged in to post a comment.