Beware! Hackers are using Chrome in fullscreen to steal your Google passwords
Hackers have found a new way to steal your passwords: forcing Google Chrome into full screen mode. Discover how this attack works and how you can protect yourself.
### A new threat: using kiosk mode to steal passwords
Imagine you are browsing the internet and suddenly, Google Chrome goes into full screen mode showing you a Google login page. Although it may seem like a legitimate situation, it is actually an attack. OALabs researchers have discovered that cybercriminals are using this technique to steal Google passwords using malware known as Amadey.
This malware enables kiosk mode on Google Chrome, a feature normally used in point of sale systems or registration terminals. While in this mode, the browser displays a fake login page that imitates Google’s. The user, unable to exit full screen with keys like F11 or ESC, is forced to enter their credentials.
### How the attack works: Amadey and StealC
It all starts when the user’s device is infected with the Amadey malware, which then downloads and executes another malicious program called StealC. The latter is responsible for stealing the credentials once they are entered on the fake login page.
Unsuspecting victims enter their username and password, allowing attackers to access their account. With this information, attackers can engage in various illegal activities, such as spreading other types of malware, accessing personal information, or even committing bank fraud.
### Protect your accounts: how to avoid falling victim to these attacks
This type of attack serves as a reminder of the importance of staying vigilant while browsing the web. Here are some tips to avoid falling into these traps:
– **Keep your software up to date:** Make sure both your operating system and browser are always updated.
– **Beware of suspicious links:** Avoid clicking on links of dubious origin or visiting suspicious websites.
– **Two-factor authentication:** Enable two-factor authentication to add an extra layer of security to your Google account.
– **Pay attention to browser behavior:** If Chrome goes full screen and doesn’t allow you to exit, be wary and try closing the browser from the task manager or restarting your device.
Remember, while it is normal for Google to request your credentials from time to time, it is not common for this to happen under kiosk mode restrictions. Stay alert and protect your accounts.
