Wednesday, August 12, 16:41
Home security Cookiethief malware steals application cookies

Cookiethief malware steals application cookies

A new dangerous one malware, discovered by security researchers called Cookiethief, is designed by malicious agents to steal cookies from browsers and Facebook, gaining root access to Android Appliances.

To acquire hacker access to cookies is particularly dangerous, as web services use them to store on the device a unique session identifier that can identify the user without a password and login.

Cookiethief affects your browser and Facebook app, but it could also steal cookies from any site from other applications in the same way.

Security researchers believe that the malicious Cookiethief program is probably linked to known ones Trojans such as Sivu, Triada and Ztorg.

A persistent one backdoor such as Bood, along with Cookiethief and Youzicheng utilities, can invade a device.

Cookiethief transfection process

Initially, com.lob.roblox, a Cookiethief package downloads to the Android device, similar to the Roblox Android gaming client (com.roblox.client), but has nothing to do with it.

The malware is then connected to a backdoor that is installed on the same smartphone to execute the command and after that, it passes a Shell command to execute and as a result, a backdoor named Bood will drop into a path /system/bin/.bood which helps to run a local server and execute commands received from Cookiethief.

This malicious application is believed to be used to bypass the security system on messenger or the social network, using a proxy server on the victim's device to avoid crawling, and the request on the site will look like a request from a legitimate account.

To apply this method, an executable file is first downloaded and run on the target device.

These two attacks are used by malicious agents to evade detection by Facebook and the attacker can launch the attack. procedure.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Windows applications you need to delete for a better experience!

Some Windows applications are necessary for a computer to function properly, while others often cause problems. These are applications that ...

How to test the new data-saving video settings of Chrome 86?

If there's one issue with the upcoming Chrome 86 update, it seems to be efficiency. Users expect a ...

Netflix: How to change the language in profiles, subtitles and audio

Netflix is ​​not just an English-language streaming service with content from around the world. You can easily watch movies and ...

How to block spam calls and messages on Android?

Android can help you block and get rid of annoying spam calls. If you block ...

How do you turn large Twitter threads into readable posts?

If you are a regular Twitter user, you may have come across large Twitter threads that help the message exceed the limit ...

Do you want a Chromebook? Choose among the 4 best!

A good Chromebook is not much different from regular laptops, while the best of them may be nicer than ...

UniConverter: Convert videos to 1000 formats 30 times faster!

If you are a video content creator, you will definitely need to convert a video to various formats many times, without compromising ...

How to persuade older people to use technology?

Technology can often seem daunting and difficult to older people who are unfamiliar with ...

How to stream 4K Ultra HD content to Netflix?

During the quarantine, Netflix has been a great help to people spending boring hours at home. The service has ...

iPhone: Add and remove Widgets from the Home screen

Apple brought the widgets to the Home screen of the iPhone with iOS 14. This is an advanced form of widgets from ...