
New Malware Is Stealing Passwords Saved in Your Web Browser
A type of malware called ACR Stealer is attacking businesses by grabbing passwords and personal data stored in web browsers like Chrome and Edge.
Source
BleepingComputer
Original headline: Microsoft warns of surge in ACR Stealer attacks on customers
Plain-English summary by GetCyberRight. Read the full report at the source above.
Microsoft has warned about a significant increase in attacks using malware called ACR Stealer. This harmful software targets computers to steal passwords that people have saved in their web browsers, authentication tokens that keep you logged into websites, and sensitive documents stored on the computer. The attacks are primarily focused on business customers, but the same tactics could affect home users as well. This threat mainly affects people who save their passwords directly in web browsers like Chrome, Edge, Firefox, or Safari.
If you use your browser's built-in password manager to remember your login information for email, banking, social media, or shopping sites, that information could be at risk if your computer gets infected. Business users are currently the main targets, but families should still take precautions.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
Here is what you should do right now:
- Stop saving passwords directly in your web browser if possible.
- Consider using a dedicated password manager like Bitwarden, 1Password, or Dashlane instead, which offer better security protections.
- Make sure your antivirus software is up to date and running.
- Be extremely careful about downloading files or clicking links in emails, even if they appear to come from someone you know.
- Enable two factor authentication on all important accounts like email, banking, and social media. For long term protection, teach your family to be cautious about what they download and click. Never download software from pop up ads or unfamiliar websites. Keep your operating system and all programs updated. Consider using a password manager designed specifically for security rather than relying on your browser to remember everything. Regular backups of important files to an external drive can also help you recover if malware does infect your computer.
Curated from trusted cybersecurity sources by GetCyberRight
Source: BleepingComputerStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Critical WordPress Security Flaw Needs Immediate Fixing
If you run a WordPress website, hackers now have public tools to break into unpatched sites. Update your WordPress installation immediately.
2 min read
Critical WordPress Security Flaw Needs Immediate Attention from Website Owners
If you run a WordPress website, hackers now have tools to break in using a newly discovered flaw. Update your site immediately to stay protected.
2 min read
New Malware Steals Passwords Saved in Your Web Browser
Microsoft reports a rise in attacks using software that steals passwords you have saved in Chrome, Edge, and other browsers.
2 min read
New Defense Stops Malicious AI Tools Before They Can Cause Harm
Security researchers found a way to shut down harmful AI hacking tools. This is good news for protecting your accounts and personal information online.
2 min read