"Google Accounts Compromised: Hackers Bypass Passwords for Access"
TL;DR Summary
A zero-day exploit in Google's cookie generation process, known as "MultiLogin," allows hackers to gain unauthorized access to Google accounts without needing passwords. The exploit enables session persistence, making it difficult for the true account owner to kick out the hacker with a password reset. Hackers have already incorporated the exploit into info-stealing malware, and various threat groups have rapidly adopted the technique. Google is yet to roll out a comprehensive solution, and affected users are advised to log out of all devices and browsers before resetting their passwords with sufficiently complex and unique ones.
- Google Accounts Hacked Without Need for Passwords Tech.co
- Hackers can now access your Google account without password | Tech World DNA | WION WION
- Are Hackers Gaining Access to Google Accounts Without Passwords? Here's What We Know - Alphabet (NASDAQ:G Benzinga
- Cybercriminals find new way to access Google accounts without password: report The Economic Times
- Hackers can now take control of your Google Account without needing a password. Here's how it works | Mint Mint
Reading Insights
Total Reads
0
Unique Readers
0
Time Saved
1 min
vs 2 min read
Condensed
75%
387 → 95 words
Want the full story? Read the original article
Read on Tech.co