Yet Another Way to Bypass Google Chrome's Encryption Protection

Researchers report that the VoidStealer Trojan bypasses Chrome's App-Bound Encryption by attaching to the browser as a debugger, pausing execution at the moment data is decrypted, and extracting the plaintext master key from memory—enabling theft of cookies, tokens, and saved credentials; the article notes this is part of a broader trend of infostealers and researchers finding ABE bypasses across Chromium-based browsers.