New Qilin Ransomware Targets Chrome User Data

The Qilin ransomware, a new and dangerous threat, specifically targets personal data stored in Google Chrome, including login credentials, and can spread across devices on the same network. Recent investigations by Sophos X-Ops revealed that attackers gained access through compromised credentials from a VPN portal lacking multi-factor authentication, allowing them to harvest data for 18 days before encrypting files to extort payments. This ransomware employs an unusual tactic of simultaneously stealing Chrome credentials, potentially amplifying the chaos of ransomware incidents. Google has also reported a separate 'high' level flaw in its Chrome browser, linked to the V8 JavaScript engine, which can be exploited to take control of the browser and steal sensitive information. Users are urged to update their Chrome to mitigate these risks. The combination of these threats highlights the critical need for improved security measures, such as two-factor authentication, to prevent unauthorized access.