Your one-stop web resource providing safety and security information to manufacturers

Passteal, a piece of malware that steals sensitive information stored in web browsers by relying on password recovery tools, is now going through file sharing websites.

Passteal versions end up disguised as e-books, key generators and even bundled with installer applications, said researchers at Trend Micro.

Europe Domains Host BlackHole
DNS Records Hacked
Best Practices for DKIM Hole
Email Signature Holes Fixed

While older variants relied on PasswordFox to gain access to sensitive browser data, a new version (TSPY_PASSTEAL.B) uses WebBrowserPassView instead. This allows attackers to steal information from Internet Explorer, Firefox, Chrome and Safari.

In order to protect themselves against such threats, users should be aware of what they are downloading from file sharing or BitTorrent websites, especially since this isn’t the only malicious element that’s going around looking like an innocent application.

Schneider Bold

Also, third-party password manager applications or features such as Firefox’s “master password” are a great way to protect sensitive information against pieces of malware such as Passteal.

Pin It on Pinterest

Share This