Android

Chrome On Windows Account Recovery Tool Caught Stealing Passwords

Code published to Node Package Manager (NPM) has been caught stealing passwords from legitimate account recovery tools in Chrome on Windows. That’s based on recent reports, detailing the malicious ...
Bleeping Computer

NPM package steals Chrome passwords on Windows via recovery tool

New npm malware has been caught stealing credentials from the Google Chrome web browser by using legitimate password recovery tools on Windows systems. Additionally, this malware listens for incoming ...
Threat Post

NPM Package Steals Passwords via Chrome’s Account-Recovery Tool

In another vast software supply-chain attack, the password-stealer is filching credentials from Chrome on Windows systems via ChromePass. A credentials-stealing code bomb that uses legitimate password ...