Bleeping Computer

You Can Steal Windows Login Credentials via Google Chrome and SCF Files

Just by accessing a folder containing a malicious SCF file, a user will unwittingly share his computer's login credentials with an attacker via Google Chrome and the SMB protocol. This technique is ...
ZDNet

Windows 10 credential theft: Google is working on fix for Chrome flaw

Attackers can use Google's Chrome browser to install and automatically run a malicious file on a Windows PC to steal passwords. DefenseCode security researcher Bosko Stankovic has detailed a ...
Threat Post

Chrome Browser Hack Opens Door to Credential Theft

Researchers at DefenseCode claim a vulnerability in Google’s Chrome browser allows hackers to steal credentials and launch SMB relay attacks. A vulnerability in Google’s Chrome browser allows hackers ...