You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This is a bug that I found in all the stealers available on the market right now, after some debugging I found out that all the stealers extract the master key and then try to decrypt the cookies using the master key, but that seems to be patched.
For some reason when you try to decrypt the cookies using the Master Key now it now gives you a MAC error (which means that the key for decryption is incorrect).
Seems like chrome and chromium based browsers changed the way they encrypt their cookies.
For firefox though, firefox does not encrypt their cookies at all so they are stored in the database in plaintext ready to be extracted.
Password and history stealing still working though.
This is a bug that I found in all the stealers available on the market right now, after some debugging I found out that all the stealers extract the master key and then try to decrypt the cookies using the master key, but that seems to be patched.
For some reason when you try to decrypt the cookies using the Master Key now it now gives you a MAC error (which means that the key for decryption is incorrect).
Seems like chrome and chromium based browsers changed the way they encrypt their cookies.
For firefox though, firefox does not encrypt their cookies at all so they are stored in the database in plaintext ready to be extracted.
Password and history stealing still working though.
EDIT: check this and this for more information
The text was updated successfully, but these errors were encountered: