From gbhackers.com
![Google Uncovered Tool](https://i1.wp.com/blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg4013saRhcYiJtGlAclAt6xk47YzyQ8J9MpRsUSoMGtioRKFhmnzll2WSpghdU5s26jLaaTjBiCnrUSzOag4feXNlboeE101D21NIb_0yBh97TSdg-nLxxJhZWCyM_vUvZwmW9XLMmISVotmN0PniFnUwg2VS1iVh0nD2UY2EnW7YT8WzJxiPxL2K6lw/s16000/Google%20Uncovered%20Tool%20used%20by%20Iranian%20APT%20Hackers%20to%20Steal%20Email%20Data.png?w=696&ssl=1)
There has been an addition to the Iranian APR group Charming Kitten’s malware arsenal recently with the addition of a new malicious tool. This newly added tool authorizes the threat actors to retrieve user data from the following accounts:-
- Gmail
- Yahoo!
- Microsoft Outlook
The tool was discovered by Google’s Threat Analysis Group (TAG) and is called Hyperscrape. By initiating a fake session or stealing credentials, the attacker will pose as a legitimate user in order to initiate the authentication process.