Chrome 80 update cripples top cybercrime marketplace

Page 1 of 2 12 LastLast
    Chrome 80 update cripples top cybercrime marketplace

    Chrome 80 update cripples top cybercrime marketplace

    90% of all stolen credentials on the Genesis Store came from the AZORult malware. Now, the malware doesn't work in Chrome 80.

    A small change in the Google Chrome 80 browser has had a devastating effect on one of today's top cybercrime marketplaces.

    According to new research shared with ZDNet this week by threat intelligence firm KELA, the Genesis Store is currently going through a rough patch, seeing a 35% drop in the number of hacked credentials sold on the site.

    KELA says Genesis administrators are currently scrambling to fix their inventory deficit and feed the store with new credentials before customers notice a drop in new and fresh listings.

    One could say that if they don't address the issues caused by the new Chrome 80 update, the store's entire future hangs in the balance.
    Chrome 80 update cripples top cybercrime marketplace | ZDNet

    This why Chrome is King of Browsers
    Golden's Avatar Posted By:

  1. Andrew129260's Avatar
    Posts : 191
    Windows 10 Pro x64 latest version
       #1

    Despite the privacy issue being google and all that, chrome has done more for security, standards and a overall better web then any other web browser.
      My Computers

  2. Golden's Avatar
    Posts : 1,644
    Windows 10 Pro x64
    Thread Starter
       #2

    Andrew129260 said:
    Despite the privacy issue being google and all that, chrome has done more for security, standards and a overall better web then any other web browser.
    rAmen to that!
      My Computers

  3. HRPuffnstuff's Avatar
    Posts : 514
    Windows 10 Pro x64
       #3

    Chrome is my goto browser now, sorry ff, but I still wish that it had standard windows drop down menus.
      My Computer

  4. TairikuOkami's Avatar
    Posts : 4,852
    Windows Home Dev 21xxx x64
       #4

    This will be only a temporary complication. People should never ever store passwords in the browser.
      My Computer

  5. Golden's Avatar
    Posts : 1,644
    Windows 10 Pro x64
    Thread Starter
       #5

    TairikuOkami said:
    This will be only a temporary complication. People should never ever store passwords in the browser.
    Agree - always use a decent password manager for those.
      My Computers

  6. Andrew129260's Avatar
    Posts : 191
    Windows 10 Pro x64 latest version
       #6

    TairikuOkami said:
    This will be only a temporary complication. People should never ever store passwords in the browser.
    Golden said:
    Agree - always use a decent password manager for those.


    Any reason for that? While password managers are usually more secure, I don't see much danger in using the browser. I always found firefox and chrome's password managers to be pretty secure. This site seems to steal them from browsers that are on systems with no password or an infected pc. So long as the device itself is secured. The system password is required to view them. Almost all sites that allow saved passwords to be used also require manual entry when trying to change anything in their account settings. So even if someone using your saved password to log into one of your sites, when they go to account settings there isn't much they can do when its requested again. Unless they start really trying to crack it, in which case if you're this targeted no security will save you anyway.

    You can also provide your own master password to use instead of the default 256 bit google credentials encryption that the browser uses. I recommend that option more.
      My Computers

  7. Andrew129260's Avatar
    Posts : 191
    Windows 10 Pro x64 latest version
       #7

    HRPuffnstuff said:
    Chrome is my goto browser now, sorry ff, but I still wish that it had standard windows drop down menus.
    My biggest problem with firefox is its mobile app is awful. Downright terrible. The addons are a nice touch though.
      My Computers

  8. TairikuOkami's Avatar
    Posts : 4,852
    Windows Home Dev 21xxx x64
       #8

    Andrew129260 said:
    Any reason for that? While password managers are usually more secure, I don't see much danger in using the browser. I always found firefox and chrome's password managers to be pretty secure.
    There are so many browser vulnerabilities abusing the inbuilt password managers, that people do not even bother reporting them anymore, they just get fixed on the go. Password managers with auto-fill enabled can be also exploited, but they are usually more secured and typically require user's interaction.
    Andrew129260 said:
    So long as the device itself is secured.
    Well, browser extensions can easily harvest passwords/hashes, even ads will do (scripts, hidden iframes).
    Browser-based password managers are being exploited by advertisers – BGR

    I use offline Keepass for important passwords and online Bitwarden for the rest.
      My Computer

  9. Andrew129260's Avatar
    Posts : 191
    Windows 10 Pro x64 latest version
       #9

    TairikuOkami said:
    There are so many browser vulnerabilities abusing the inbuilt password managers, that people do not even bother reporting them anymore, they just get fixed on the go. Password managers with auto-fill enabled can be also exploited, but they are usually more secured and typically require user's interaction.

    Well, browser extensions can easily harvest passwords/hashes, even ads will do (scripts, hidden iframes).
    Browser-based password managers are being exploited by advertisers – BGR

    I use offline Keepass for important passwords and online Bitwarden for the rest.
    hmm, i wonder if this is why google moved the browser autofill to gboard instead of within the browser on android. Recent change I noticed. And yes browser extensions could definitely cause issues. Makes sense.

    I don't save any important passwords, I just remember them. All the ones I save are forums and convenience stuff that wouldn't matter if it was compromised.

    Getting people to use a password manager has proven difficult for me, so I just have them use chrome's password manager with two factor enabled on their google account and hope it's enough. At least chrome is pretty fast at resolving vulnerabilities.
      My Computers


 
Page 1 of 2 12 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 21:03.
Find Us




Windows 10 Forums