Chrome Browser Botnet 'Cloud9' Using Malicious Extensions To Gain Remote Control Over User's Chrome

Chrome browser botnet 'Cloud9' uses fake extensions distributed by websites pushing fake Adobe Flash Player updates to steal users' data, credentials, accounts, and enlist the victim's browser in DDoS attacks.

Cloud9 botnet works as a RAT (remote access trojan) for the Chromium browser, letting threat actors execute commands remotely.

The fake extensions that are used to infect the browser aren't on the Chrome Web Store. They consist of three JavaScript files for collecting system information, mining cryptocurrency, etc.


Read More

Got Something To Say?

Your email address will not be published.