A new Windows trojan has been discovered that attempts to steal passwords stored in the Google Chrome browser. The malware uses a remote MongoDB database to store the stolen passwords. While this method ultimately serves its purpose of stealing passwords, it also opens the door for other attackers to gain access to the victim’s credentials. Anyone analyzing this malware, whether it be law enforcement, researchers, or other threat actors, can retrieve the hard coded credentials and use them to retrieve the stolen credentials to access them.
Source: https://www.bleepingcomputer.com/news/security/new-chrome-password-stealer-sends-stolen-data-to-a-mongodb-database/