Security Concerns Regarding LummaC2 Malware and Authenticator Extension

[Noonenowhoiam]

Hello,

I have a question about the security of the Authenticator Extension. Recently, my system was infected by a malware (LummaC2), which is a remote access trojan (RAT) that gained access to my PC and caused some issues. I use Authenticator Extension to manage my 2FA codes in the browser, and I wanted to know if there are any potential risks of this malware compromising the data in the extension.

Specifically, I’m concerned about the following:

Does the Authenticator Extension's encryption (with the password) provide enough protection against malware like LummaC2 that might try to access my browser’s data or capture my 2FA keys?

If the malware is sophisticated enough to capture passwords, would it also be able to compromise the Authenticator Extension data, or is it protected from such access?

Should I take any additional precautions to protect my 2FA data when using Authenticator Extension, especially in the case of malware infections?

Thank you for your help and insights!