Hackers know how to steal cookies from your Chrome browser on Windows

A billion Chrome users worldwide are potentially at risk from hackers whose malware could hijack cookies that store login credentials and other personal data.

Google plans to address this, and until then, Chrome users on Windows should be careful. Others on macOS are not affected by this vulnerability.

To remind witnesses (biscuit) are small tracking files on your computer that record session data for your web accounts. Without these credential shortcuts, you'll spend a lot of time logging in.

Regardless of the operating system, these small tracking files on your computer have a nasty habit of following you around the Internet and reporting your activity. Google's long-awaited takedown of these third-party trackers is underway and should have happened a long time ago.

Stealing Chrome cookies

Google warns, “Many users on the web are falling victim to cookie-stealing malware, allowing hackers to access their web accounts. Malware operators often use social engineering to deliver malware that targets browser cookies.”

Google's warning comes as part of a proposed update to its Chrome browser to address this issue, acknowledging that “while essential to the modern web due to its powerful utility, witnesses are also a lucrative target for attackers.”

The solution suggested by Google

This is primarily a challenge for desktop computers, and Google's clever response is to associate these cookies with the user's device, rendering them useless if stolen in the absence of access to the original device itself. “We are currently prototyping a new web feature called Device binding session credentials (DBSC) which will allow users to be better protected against cookie theft… By linking authentication sessions to the device, DBSC nullifies the value of these cookies leaked from the computer. »

Now that you've been warned,

Setting aside Google's new beta update for now – take this as a warning to be aware of the risks and keep them in mind – especially when logging into financial websites or trading systems owned by the company you work for.

“This type of cookie theft happens after you sign in, so it bypasses two-factor authentication and any other checks at sign-in time,” Google explains.

In a 2023 report, SpyCloud said it “recovered 1.87 billion malicious witness records…allowing cybercriminals to infiltrate organizations by posing as legitimate users and accessing an active web session, effectively bypassing security best practices such as multiple agents.” Authentication (Ministry of Foreign Affairs). »

Until your browser's cookies are completely replaced, check for updates, and use another browser, because cookie theft by hackers still has a bright future.

Read: Here's the best way to browse the web incognito