Computer Security Amazon, Google, Apple and Facebook Log-In Credentials...

Amazon, Google, Apple and Facebook Log-In Credentials Stolen by CopperStealer Malware

social media login theft

A recent outbreak of the CooperStealer malware, which is also referred to as Mingloa, has been observed stealing sensitive and personal information, including log-in credentials from Amazon, Google, Apple and Facebook accounts.

CopperStealer is currently active in Brazil, Indonesia, Pakistan and India, among other countries and is being spread via websites that offer illegal activation tools or "cracks" for licensed software.

Researchers at ProofPoint believe that this current incarnation of CopperStealer is a variation of code within the SilentFade malware family.

New CopperStealer Malware Campaign Description


CopperStealer works by preying on computer users looking to save money by downloading a cracked software or a key generation program. As most legitimate software requires a product key to upload and run, victims are led to believe that they received a lucky break in achieving the use of a costly software without having to pay for it. But they soon will learn that in an online world full of hackers, nothing is truly free.

Instead, or in addition to the useful program they coveted, their computer is also infected with CopperStealer. The malware runs in the background and searches the victim's web browsers for login credentials for Chrome, Edge, Yandex, Opera and Firefox, among its preferred targets.

Also at risk, according to researchers, are Apple, Amazon, Bing, Google, PayPal, Tumblr and Twitter and Facebook credentials.

Once these accounts are breached, hackers are able to obtain credit-card information and will usually proceed to make unauthorized purchases. Although users of these platforms can potentially be victimized, enabling the use of "Two Factor Authentication" can protect your account even in the event that your password is stolen.

CopperStealer also deploys the use of a "downloader" function that installs additional malware, usually keyloggers, ransomware or other potentially unwanted programs (PUPs), on the victim's computer.

This new outbreak serves as a reminder to avoid shortcuts in obtaining software programs, as well as to always employ 2FA and other security measures for all your accounts and apps.

Loading...