Skip to content
Disawar Satta King
  • Home
  • Disawar Panel Chart
  • Satta King
  • Banking & Finance
  • Privacy Policy
  • About Us
  • Contact Us
  • Disclaimer
How Hackers Use New Annoyance Technique To Steal Google Account Passwords

How Hackers Use New Annoyance Technique To Steal Google Account Passwords

September 16, 2024 by Rana Foroohar

Threat actors have used many methods of gaining access to precious Google accounts, the key to your Gmail inbox and the security treasures contained within, or your crypto-wallet passphrase. Recently we have seen malware using optical character recognition to grab crypto passwords, and another that targets two-factor authentication codes by tricking users into giving permission to read SMS messages, for example. But now there’s a new player in town by the name of StealC, which uses perhaps the simplest yet most effective method of gaining access to Google account credentials: annoying the heck out of the victim.

The Open Analysis Lab researchers have revealed how the credential flushing campaign has been using the technique since at least August 22. In their analysis, the OALabs researchers confirmed that the hackers force the victim into entering their credentials into the browser from where the malware can then steal them. “The technique involves launching the victim’s browser in kiosk mode and navigating to the login page of the targeted service, usually Google,” the researchers said. Because kiosk mode is a full-screen deployment of the browser, and the victim is prevented from being able to navigate away from it or closing the app, only one option is made available to those unfortunate enough to get trapped this way: a Google Account login window.

  • Personal Loans Among Top Keywords on Google Trends in India 2024
  • Google outage: App crashing for Android users worldwide, company says working on a fix
  • Jeremy a program manager at Google Ads; why he resigned from the google?

Google Account Credential Flusher Is Not A Credential Stealer

Interestingly, the credential flusher itself isn’t actually a credential stealer. Instead, it just applies the necessary leverage to get the frustrated victim into entering their account credentials themselves. Once they have done that, then a bog-standard bit of credential-stealing malware, in this case StealC, deploys to grab the passwords from the Chrome browser’s credential store and deliver them to the attackers. In fact, the entire campaign is only possible by using a number of different known elements. Primarily the Amadey hacking tool, which has been in use for at least six years, that loads the malware. The OALabs researchers credit threat intelligence partners the Loader Insight Agency with helping to map put a typical attack roadmap:

  • The victim is infected with Amadey.
  • Amadey loads the StealC malware.
  • Amadey loads the credential flusher.
  • The credential flusher launches the browser, in kiosk mode.
  • The victim enters their login details and these are then stolen by the StealC malware.

Check Latest News on Currency, Net Worth, Salary, Wikipedia, Finance and Latest trending News here.

Post Views: 182

We have taken all measures to ensure that the information (Banking & Finance provided in this article and on our social media platform is credible, verified and sourced from other Big media Houses. For any feedback or complaint, reach out to us at sacnilk24@gmail.com

Categories Banking & Finance Tags google, Google Account Passwords, Google News, Hackers
Illegal monopoly through Google ads
The founder-CEO of Rising Team Jennifer Dulski Net Worth, Wiki, Bio, Facebook, Google, Yahoo
  • EUR/USD Surges as US Dollar Slides, Fed Teases Two Rate Cuts in 2025
  • Rupee Slips to Record Low, Dips Below 85 Against Dollar as US Fed Curbs Rate Cut Expectations for 2025
  • Kurla Day Panel Chart 2024 : कुर्ला डे पैनल चार्ट की सम्पूर्ण जानकारी
  • Shillong Teer result today 22.12.2024 first and second round result
  • Kolkata FF Fatafat result 22.12.2024: Check FF result online
  • Satta King  Faridabad Result 22.11.2024: देखें  फरीदाबाद सट्टा परिणाम
  • Satta King: What is Satta King gambling and how to check Satta king live result online
  • भारत में सट्टा किंग क्या है और सट्टा किंग गेम कैसे खेलें?
  • Gali Disawar Satta King Result 22.12.2024 Check Here: गली दिसावर सट्टा किंग रिजल्ट
  • गाजियाबाद फरीदाबाद गली, दिसावर की खबर में आज इस अंक किया कमाल, ये रहे विनिंग नंबर्स
  • Banking & Finance
  • Desawar
  • Kolkata FF Result
  • lottery sambad
  • Satta King

© 2025 Disawar Satta King • Built with GeneratePress