Masslogger Trojan Upgraded to Steal All Your Outlook, Chrome Credentials

A credential stealer infamous for targeting Windows systems has resurfaced in a new phishing campaign that aims to steal credentials from Microsoft Outlook, Google Chrome, and instant messenger apps. Primarily directed against users in Turkey, Latvia, and Italy starting mid-January, the attacks...

HackBrowserData - Decrypt Passwords/Cookies/History/Bookmarks From The Browser

hack-browser-data is an open-source tool that could help you decrypt data passwords / bookmarks / cookies / history from the browser. It supports the most popular browsers on the market and runs on Windows, macOS and Linux. Supported Browser Windows Browser | Password | Cookie | Bookmark | Histor...

Bypassing MassLogger Anti-Analysis — a Man-in-the-Middle Approach

The FireEye Front Line Applied Research & Expertise FLARE Team attempts to always stay on top of the most current and emerging threats. As a member of the FLARE Reverse Engineer team, I recently received a request to analyze a fairly new credential stealer identified as MassLogger. Despite the la...

QQ Browser installation is vulnerable to dll hijacking

QQ Browser is an extremely fast browser developed by Tencent, which supports multiple terminals such as PC, Android and Apple. QQ Browser installation suffers from a dll hijacking vulnerability, which can be exploited by attackers to load untrusted dynamic link libraries for command execution...

QQ Browser suffers from xss vulnerability

QQ Browser is a new-generation browser launched by Tencent, with a new architecture and fully optimized for the IE kernel. An xss vulnerability exists in QQ Browser, which can be exploited by attackers to execute code...

On QQ browser and other applications“WormBrowser”vulnerability briefings-vulnerability warning-the black bar safety net

Recently, the national information security vulnerabilities library CNNVD received Pangu team on“WormBrowser”vulnerability of the relevant circumstances of the message sent, the vulnerability exists in the Android version of the QQ browser and QQ hot two applications. Due to the above products, a...

QQ browser Wormable Browser vulnerability

Source link: http://blog.pangu.io/wormable-browser/ Vulnerability description Android QQ browser, QQ hot spots and other applications on the local wifi started, it will monitor local 8786 port, and listens to all local ip addresses. When the attacking party and the attacked party is on the same L...

Security Bypass Vulnerability in QQ Browser for Android

QQ Browser is a web browser developed by Tencent. A security bypass vulnerability exists in the Android version of QQ Browser. Since QQ Browser and QQ Hotspot for Android are in a local wifi LAN environment, they listen to local port 8786 and all local ip addresses. An attacker can use the...

QQ browser privacy disclosure report-vulnerability warning-the black bar safety net

0x00 description QQ browser is Tencent development of a web browser, for Android, Windows, Mac and iOS and other platforms. Compared to the built-in browser, QQ browser provides richer functionality, for example, increase the tag window, and integrating the chat platform, etc. In the report a...