VoidStealer Malware Steals Chrome Master Key via Debugger Trick

VoidStealer malware steals Chrome master key via debugger trick

An information stealer called VoidStealer uses a new approach to bypass Chrome's Application-Bound Encryption (ABE) and extract the master key for decrypting sensitive data stored in the browser.

Chrome encryption bypass discovered: New malware steals passwords and cookies

A new infostealer is bypassing Chrome’s Application-Bound Encryption (ABE), using a debugger-based technique that researchers say hasn’t been observed in the wild. Called “VoidStealer,” the stealer appears to have found a way around ABE, introduced in Chrome 127 in 2024, a security control that locks sensitive browser data, such as passwords and cookies, behind stronger encryption and ties decryption to a privileged system service. While ABE byp…

New VoidStealer Variant Bypasses Chrome ABE Without Injection or Privilege Escalation

A newly identified variant of the VoidStealer infostealer has drawn serious attention from the security community after it became the first malware known to bypass Google Chrome’s Application-Bound Encryption (ABE) without requiring code injection or elevated system privileges. The variant, introduced in VoidStealer version 2.0 on March 13, 2026, uses a debugger-based technique to silently extract encrypted browser credentials directly from memo…