Protect Your Account: Exposed Malware Hacks Google Login Page Like the Real Thing
New Malware: Locking Browsers in Kiosk Mode to Steal Google Credentials
When it comes to cybersecurity threats, nothing is more disconcerting than the emergence of innovative tactics employed by malicious software. Bleeping Computer recently reported on a cunning piece of malware that utilizes kiosk mode to pilfer sensitive Google login information.
How the Malware Works
In a bold move, the malware takes control of your browser and locks it into kiosk mode, prompting you to enter your login credentials to access your Google account. The real coup de grâce is that the malware simultaneously disables your Esc and F11 keys, making it difficult for you to quickly exit the kiosk mode. You may be thinking, "Wait, wasn’t kiosk mode supposed to limit my actions on a specific device?" In this case, the answer is a resounding "yes" – but that’s precisely the point!
Understanding Kiosk Mode
As its name implies, kiosk mode is designed to lock down public computers or devices to restrict access to only one application. Typically, this functionality is meant to ensure seamless operation for customers or clients, rather than providing unlimited access. It’s exactly this flexibility that the malware exploits.
The Stealthy Malware Attack
The malicious tool, powered by Amadey since August 22, 2024, is just the tip of the iceberg. In the past, Amadey has been used in other cyberattacks since 2018, and the current attack specifically employs an info-stealer called StealC, launched in early 2023.
Bypassing the Malware
If you’ve fallen prey to this malicious attack, don’t worry – you’re not out of luck! Some suggested workarounds to break free include pressing:
• Alt + F4
• Ctrl + Shift + Esc
• Ctrl + Alt + Delete
• Alt + Tab
By utilizing one of these alternative hotkey combos, you might be able to navigate back to a normal operating system and recover your device.
Bonus Tip
To further frustrate the malware, attempt the Window key + R combo, which will open the Windows command prompt. From here, you can enter the following commands:
• ‘cmd’
• ‘taskkill /IM chrome.exe /F’