H3-2022-0091¶

Credential Dumping - Chrome Browser

Description¶

Malicious users can access credentials stored locally from the Chrome browser.

Impact¶

Browsers allow users to store credentials for ease of use, but this also allows a malicious attacker who has gained access to a system to access those same credentials.

References¶

• Disable Your Browser's Built-in Password Manager.
• MITRE ATT&CK Technique: T1555.003: Credentials from Password Stores: Credentials from Web Browsers