Security · 4h ago
ACR Stealer Targets Browser Tokens, Microsoft 365 Files via ClickFix Lures
ACR Stealer, active since 2024, steals browser passwords, session tokens, and Microsoft 365 files from enterprise networks. It spreads when users paste malicious commands into a Run box. Microsoft's Defender Experts detailed two delivery chains on Thursday.
Meridian48 take
The reliance on user execution makes this a reminder that social engineering remains a critical vector despite advanced defenses.
Read the full reporting
ACR Stealer Uses ClickFix Lures to Steal Browser Tokens and Microsoft 365 Files →
The Hacker News
infostealermicrosoft-365