Credential

OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities

The North Korean threat actors behind the Contagious Interview campaign have been observed using updated versions of a cross-platform malware called OtterCookie with capabilities to steal credentials from web browsers and other files. NTT Security Holdings, which detailed the new findings, said the attackers have “actively and continuously” updated the malware, introducing versions v3 and…

How New AI Agents Will Transform Credential Stuffing Attacks

ellonjohns4 months ago017 mins

Credential stuffing attacks had a huge impact in 2024, fueled by a vicious circle of infostealer infections and data breaches. But things could be about to get worse still with Computer-Using Agents, a new kind of AI agent that enables low-cost, low-effort automation of common web tasks — including those frequently performed by attackers. Stolen…

16 Chrome Extensions Hacked in Large-Scale Credential Theft Scheme

ellonjohns6 months ago07 mins

SUMMARY Large-Scale Breach: Over 16 Chrome extensions were compromised, exposing 600,000+ users to data and credential theft. Phishing Attack: Developers were tricked into granting access to a malicious OAuth app via fake Chrome Web Store emails. Cyberhaven Impact: Attackers used admin credentials to deploy a malicious update stealing sensitive user data. Widespread Impact: Many extensions…

Highlights

5 apps I use to get news before it hits social media

Framework Laptop 12 review: Doing the right thing comes at a cost

Sophos Firewall v21.5 is now available

SSD RAID 0 vs RAID 1 vs RAID 5 – Which RAID Setup Best for Creators in 2025?

Category Collection

OtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft Capabilities

How New AI Agents Will Transform Credential Stuffing Attacks

16 Chrome Extensions Hacked in Large-Scale Credential Theft Scheme