New warning issued for Chrome users.NurPhoto via Getty ImagesMicrosoft has just issued a new warning for Chrome users after discovering a sophisticated new attack that steals credentials stored in the browser, digital wallet information, data stored in the clipboard, as well as system information. The warning comes from Microsofts respected Incident Response team, but its an awkward one.The Windows-maker is on a mission to convert Chrome users to Edge, and this latest security warning does the same. Thats heightened given this attack specifically targets Chrome. To help prevent this type of malware from infiltrating the system and reduce the attack surface, Microsoft says, its best to use Edge and other web browsers that support SmartScreen, which identifies and blocks malicious websites, including phishing sites, scam sites, and sites that host malware.Microsoft has dubbed this novel remote access trojan StilachiRAT, and warns that it demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data. While the new RAT has not yet gained a substantial foothold, due to its stealth capabilities and the rapid changes within the malware ecosystem this could change. Thus the well-promoted warning.StilachiRATs capabilities are extensive, and include harvesting system information, targeting digital wallets and extracting security credentials. An attack can scan for configuration data of 20 different cryptocurrency wallet extensions for the Google Chrome browser, and can also extract and decrypt saved credentials from Google Chrome, gaining access to usernames and passwords stored in the browser.The added threat from StilachiRAT is mapping and moving across networks. It has been designed to monitor RDP sessions, capture active window information and impersonate users, allowing for potential lateral movement within networks. And as weve seen with other recent attacks, the RAT hides behind default Windows Services to dodge security scans and ensure persistence when machines are restarted.Microsofts campaign to lure Chrome users over the Edge has intensified this year, prompting Google execs to bite back. Against that backdrop, its always difficult for a security warning such as this to be seen as fully independent. Google will no doubt be plugging gaps behind the scene and will promote its own safe browsing credentials. I have asked the Chrome team for any thoughts on Microsofts new report.In addition to switching to Edge, Microsoft also advises only installing software from official websites, using Safe Links and Safe Attachments for Office 365 where available, and enabling network protection in Microsoft Defender for Endpoint to prevent applications or users from accessing malicious domains and other malicious content.While Microsoft has been pushing Windows users to the Edge, it has not yet yielded much of a result. Chrome continues to dominate the desktop market and is the de facto default browser on Windows one reason its in DOJs crosshairs. The integrated security defenses that come from Microsofts various solutions (as seen here), especially in an enterprise setting, still seem the best bet to drive conversions.