Skip to content

Hide Navigation Hide TOC

Potential Browser Data Stealing (47147b5b-9e17-4d76-b8d2-7bac24c5ce1b)

Adversaries may acquire credentials from web browsers by reading files specific to the target browser. Web browsers commonly save credentials such as website usernames and passwords so that they do not need to be entered manually in the future. Web browsers typically store the credentials in an encrypted format within a credential store.

Cluster A Galaxy A Cluster B Galaxy B Level
Potential Browser Data Stealing (47147b5b-9e17-4d76-b8d2-7bac24c5ce1b) Sigma-Rules Credentials from Web Browsers - T1555.003 (58a3e6aa-4453-4cc8-a51f-4befe80b31a8) Attack Pattern 1
Credentials from Web Browsers - T1555.003 (58a3e6aa-4453-4cc8-a51f-4befe80b31a8) Attack Pattern Credentials from Password Stores - T1555 (3fc9b85a-2862-4363-a64d-d692e3ffbee0) Attack Pattern 2