VoidStealer Malware Exploits Chrome's Encryption via Debugger Trick

The VoidStealer malware employs a novel technique to bypass Chrome’s Application-Bound Encryption (ABE) and extract the browser’s master key, which is used to decrypt sensitive stored data. This method leverages a debugger trick to circumvent security protections without requiring additional exploits or user interaction. The malware specifically targets Chrome’s encryption mechanisms, though no CVE IDs or specific version vulnerabilities were mentioned in the report. VoidStealer’s primary impact involves unauthorized access to passwords, cookies, and other confidential browser-stored information. No exact timeline or geographic targeting was disclosed in the available details.