Users from Russia began to be actively attacked with a new type of hacking using the “browser-in-browser” technique. It has been reported Izvestia By referring to IT security professionals.
It is stated that the data stealing method is suitable for any browser. This trick lets you create phishing login forms that look exactly like a real login window.
As a result, the user risks entering their credentials personally and sending them to attackers. Experts have expressed concern that such attacks will be actively used by the criminal community, primarily under the guise of advertising.
“In this attack situation, it is almost impossible to discern the difference between a normal browser window and a phishing trap. In this case, the window is actually fake. It is just an object on the page and can be moved even with a mouse,” warned IZ:SOC at Informzashchita Nikita Panov, head of forensics at the Cyber Threat Monitoring Center.
Previously, hacker group Cicada advanced tactics for cyber attacks using the VLC Media Player program used to play audio and video files.