The notorious White Snake malware has been updated to exploit a new feature in the latest version of Google Chrome.
This update allows the malware to steal CVC codes from credit cards stored in the browser, posing a significant threat to online security reports by a Who Said What in Social Media Platform, X.
Chrome’s New Feature Draws Attention
Google Chrome version 129, released on September 17th, 2024, introduced several new features to enhance user experience.
One such feature is the ability to store CVC codes from credit cards directly within the browser for easier online transactions.
Download Free Incident Response Plan Template for Your Security Team – Free Download
While this feature was designed to streamline the payment process, it has inadvertently attracted the attention of cybercriminals and infostealer developers.
White Snake Malware Update
White Snake, a well-known malware in the cybersecurity community, has swiftly adapted to this new opportunity.
The malware’s developers have updated their capabilities to target and extract these stored CVC codes from victims’ browsers.
This enhancement allows White Snake to capture complete credit card information, making it easier for cybercriminals to commit fraud and theft.
White Snake’s ability to exploit this new Chrome feature underscores the ongoing game of cat-and-mouse between software developers and cybercriminals.
Users are advised to exercise caution when storing sensitive information in their browsers and consider alternative methods for managing payment details, such as dedicated password managers or secure payment platforms.
Cybersecurity experts recommend that users regularly update their security software and remain vigilant for suspicious activity on their accounts.
Google is expected to address this vulnerability in future updates, but until then, users must take proactive steps to protect their financial information.
Are You From SOC/DFIR Teams? - Try Advanced Malware and Phishing Analysis With ANY.RUN - 14-day free trial