PTA issued a critical security alert regarding a new malware threat targeting Gmail users. Cybercriminals are using a malicious Chrome extension called “AF” to steal personal information.
Phony emails trick users into downloading the “AF” extension. Once installed, the extension takes control of the victim’s Gmail account, allowing hackers to steal all their data. Experts believe this attack is the work of the Kimsuky hacker group, known for targeting high-profile individuals. Their goal is to compromise email accounts of journalists, politicians, and government officials.
The malware also poses a threat to Android smartphones. By exploiting Google’s web-to-phone sync feature, attackers can remotely install apps on victims’ phones without their knowledge. This malware, called Fast Viewer, steals sensitive information like camera footage, phone calls, and recordings.
PTA urges users to be cautious of emails from unknown senders and to avoid downloading attachments or extensions from unreliable sources. Only install extensions from the official Google Chrome Web Store and check reviews before installing. Additionally, enable Multi-Factor Authentication (MFA) for your Gmail account.
The situation remains critical as the attackers may have alternative methods to spread the malware. Users should remain vigilant and prioritize online safety.
