Bank-fraud malware not detected by any AV hosted in Chrome Web Store. Extension that surreptitiously steals bank passwords uploaded twice in17 days.
By Dan Goodin
A researcher has uncovered an elaborate bank-fraud scam that's using a malicious extension in Google's Chrome Web Store to steal targets' passwords.
This is a social-engineering attack as much as it is a trojan horse. The article doesn't make clear if the Chrome app would run on cell phones, so I'm approving it.
Bill Horne Moderator