Global Cyber security company Palo Alto Networks has discovered a malware”cookieMiner”, capable of stealing saved usernames and passwords in Google Chrome, saved credit card credentials in Chrome and iPhones text messages if backed up to a Mac.
The new malware is capable of stealing browser cookies associated with mainstream cryptocurrency exchanges and wallet service websites visited by the victims.As per the reports it can easily steal passwords in Chrome and iPhone text messages from iTunes backups on the tethered Mac.
“By leveraging the combination of stolen login credentials, web cookies and SMS data, based on past attacks like this, we believe the bad actors could bypass multi-factor authentication for these sites,” the researchers noted.
The malware also configures the system to load coinmining software on the system.”CookieMiner” tries to navigate past the authentication process by stealing a combination of the login credentials, text messages and web cookies.
The attackers main target is that of Apple safari and google chrome is also in the list.
“CookieMiner” tries to navigate past the authentication process by stealing a combination of the login credentials, text messages and web cookies.