Malware groups claimed they can access expired Google OAuth cookies, gaining access to accounts even when the user logs out or changes their password, BleepingComputer reports. Using a Google "MultiLogin" endpoint, hackers claim it can restore expired authentication codes, gaining repeated access to accounts.
Malware groups claim they can steal Google OAuth account data
Related stories
New state laws protect abuse survivors from misuse of vehicle connectivity
How a recent settlement represents a warning and relief for the adtech industry
Notes from the IAPP Canada: Privacy watchdogs — What the 2024–25 annual reports reveal
A view from DC: Competing Republican visions for tech policy in the 119th Congress
European Commission receives final version of General-Purpose AI Code of Practice