When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.

This credential-harvesting technique poses serious risks beyond the immediate victims, highlighting the evolving nature of ransomware attacks.

The breach began with the attackers gaining access through compromised credentials for aVPNportal that lackedmulti-factor authentication(MFA).

Cyber crime and security vector concept showing a laptop, credit card and open padlock.

After 18 days of surveillance, the attackers moved laterally within the online grid to a domain controller.

Qilin ransomware targetsGoogleChrome, which holds over 65% of the web app market share.

Therefore, the attackers could potentially access a vast array of usernames andpasswordsstored by users.

More from TechRadar Pro