Browser-Based Ransomware Exploits File System Access API in Novel Attack
Researchers have uncovered a new ransomware technique that operates entirely within a browser, leveraging the File System Access API to encrypt or exfiltrate files without requiring native malware, exploits, or elevated privileges. The proof-of-concept (PoC), attributed to AI-assisted development by DeepSeek, demonstrates how malicious actors can turn theoretical browser-based threats into practical attacks.
The attack begins with a social engineering lure a fake AI image-enhancement or upscaler web app designed to trick users into granting folder-level access. Once a victim selects a directory (such as a photo folder), the malicious page enumerates, reads, and encrypts files using browser file handles, then displays a ransom note. The technique bypasses traditional defenses, as it relies on legitimate browser APIs and user-granted permissions rather than dropped binaries or exploits.
A key concern is the attack’s effectiveness on Android, where Chromium-based browsers (including Chrome) allow access to sensitive directories like DCIM and Pictures, which often contain irreplaceable personal data. While Safari and Firefox do not widely expose the same API primitives, the risk is concentrated where Chrome dominates.
The DeepSeek PoC, dubbed InfernoGrabber, used a Discord-themed frontend with showOpenFilePicker() and showDirectoryPicker() to obtain file handles, demonstrating an end-to-end attack chain. Though the API restricts arbitrary disk access, targeting user-facing folders like Pictures and Downloads is sufficient for high-impact outcomes when paired with convincing social engineering.
This attack highlights a growing challenge: AI can rapidly translate abstract malicious concepts into operational threats by mapping them onto legitimate platform features. While DeepSeek’s model refuses direct ransomware prompts, it generated the necessary HTML/JavaScript code to abuse the File System Access API, accelerating the development of one-off malware.
The incident underscores the need for improved permission controls, as current mitigations rely heavily on user vigilance such as avoiding write access to sensitive directories and robust backups. Browser vendors are urged to tighten restrictions, particularly on mobile, where media libraries are prime targets. Defenders must now account for AI-assisted, disposable malware artifacts that complicate detection and attribution.
Source: https://gbhackers.com/browser-only-ransomware-uses-file-system/
DeepSeek TPRM report: https://www.rankiteo.com/company/deep-seek-ai-model
Google TPRM report: https://www.rankiteo.com/company/googleai
"id": "deegoo1782973818",
"linkid": "deep-seek-ai-model, googleai",
"type": "Ransomware",
"date": "7/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'location': 'Global (primarily Android users)',
'type': 'Individual users'}],
'attack_vector': 'Browser-based (File System Access API)',
'data_breach': {'data_encryption': 'Yes (files encrypted via browser-based '
'ransomware)',
'data_exfiltration': 'Possible (PoC demonstrates encryption '
'and exfiltration)',
'file_types_exposed': ['Images', 'Documents'],
'sensitivity_of_data': 'High (irreplaceable personal data)',
'type_of_data_compromised': 'Personal files (e.g., photos, '
'documents)'},
'description': 'Researchers have uncovered a new ransomware technique that '
'operates entirely within a browser, leveraging the File '
'System Access API to encrypt or exfiltrate files without '
'requiring native malware, exploits, or elevated privileges. '
'The proof-of-concept (PoC), attributed to AI-assisted '
'development by DeepSeek, demonstrates how malicious actors '
'can turn theoretical browser-based threats into practical '
'attacks.',
'impact': {'data_compromised': 'Files encrypted or exfiltrated',
'operational_impact': 'Loss of access to personal files (e.g., '
'photos, documents)',
'systems_affected': 'User devices (primarily Android via '
'Chromium-based browsers)'},
'initial_access_broker': {'entry_point': 'Social engineering (fake AI '
'image-enhancement web app)',
'high_value_targets': 'User-facing folders (e.g., '
'Pictures, DCIM, Downloads)'},
'lessons_learned': 'AI can rapidly translate abstract malicious concepts into '
'operational threats by mapping them onto legitimate '
'platform features. Browser-based attacks leveraging '
'user-granted permissions pose a growing risk, especially '
'on mobile platforms.',
'motivation': 'Financial gain (ransomware)',
'post_incident_analysis': {'corrective_actions': ['Browser vendors to '
'implement stricter '
'permission controls',
'Enhanced user education on '
'web app permissions',
'Development of detection '
'mechanisms for AI-assisted '
'malware'],
'root_causes': ['Abuse of legitimate browser APIs '
'(File System Access API)',
'User-granted permissions to '
'malicious web apps',
'Lack of sufficient restrictions '
'on mobile browsers']},
'ransomware': {'data_encryption': 'Yes',
'data_exfiltration': 'Possible',
'ransomware_strain': 'InfernoGrabber (PoC)'},
'recommendations': ['Improve permission controls for browser APIs like File '
'System Access API',
'Tighten restrictions on mobile browsers (e.g., Chrome on '
'Android)',
'Educate users on risks of granting folder-level access '
'to web apps',
'Maintain robust backups to mitigate ransomware impact',
'Monitor for AI-assisted malware development'],
'references': [{'source': 'Researchers (PoC by DeepSeek)'}],
'response': {'containment_measures': 'User vigilance (avoiding write access '
'to sensitive directories), robust '
'backups',
'remediation_measures': 'Browser vendors urged to tighten '
'restrictions on File System Access API, '
'especially on mobile'},
'threat_actor': 'AI-assisted development (DeepSeek)',
'title': 'Browser-Based Ransomware Exploits File System Access API in Novel '
'Attack',
'type': 'Ransomware',
'vulnerability_exploited': 'File System Access API (user-granted permissions)'}