In the tech industry, a concerning malware campaign has emerged that employs a unique tactic to trick users into providing their Google credentials. This malware operates by locking users in their browser’s kiosk mode, preventing them from easily exiting as it restricts the functionality of the “ESC” and “F11” keys.
The malware captures the browser on Google’s login page, aiming to create frustration for the user. Eventually, the goal is to compel users to enter and save their Google credentials in the browser, falsely promising to “unlock” the computer.
After users save their credentials, the StealC information-stealing malware retrieves this data from the browser’s credential store and sends it to the attackers.
Residents in Fiji are advised not to enter their credentials if they encounter this situation and to ensure their anti-virus software is up to date on their devices.