Yet Another Way to Bypass Google Chrome's Encryption Protection

Summary

Researchers have discovered that the VoidStealer trojan can circumvent Google Chrome's App-Bound Encryption (ABE) mechanism, a security feature designed to protect sensitive data stored in the browser. This bypass enables infostealers to potentially access encrypted credentials and other protected information from Chrome users. The vulnerability highlights a significant gap in Chrome's defenses against sophisticated malware campaigns.

Indicators of Compromise

• malware — VoidStealer

Entities