Don’t Get Mad, Get Wise: How to Defend Against Cyberattacks with Knowledge
77 Views

Qilin Ransomware Caught Stealing Google Chrome Credentials

In a recent discovery, Sophos Labs uncovered that the Qilin ransomware is not only encrypting files but also stealing sensitive credentials stored in Google Chrome. This new behavior signals a broader approach by ransomware operators, combining data theft with encryption for maximum leverage over victims. By accessing stored credentials, attackers can target additional services and accounts, significantly escalating the potential damage.

Qilin’s dual threat model serves as a reminder for organizations to strengthen their cybersecurity measures, with a focus on ransomware resilience and proper credential management. Ensuring Chrome’s password manager is properly secured and limiting the use of stored credentials can mitigate this risk. Additionally, adopting a robust ransomware protection solution and implementing multi-factor authentication (MFA) are essential steps to defend against these evolving tactics.

For more details, read the full article here: [Qilin Ransomware Caught Stealing Credentials Stored in Google Chrome](https://news.sophos.com/en-us/2024/08/22/qilin-ransomware-caught-stealing-credentials-stored-in-google-chrome/).