Google Chrome vulnerability allows cyberattackers access to Google Accounts

Google Chrome vulnerability allows cyberattackers access to Google Accounts

CloudSEK researchers have discovered a serious cookie-related vulnerability in Google Chrome, which could enable unauthorized access to Google accounts.

The flaw is exploited by a new hack that manipulates the OAuth2 authorization protocol. It requires a malware to be installed on the desktop that can regenerate expired Google authentication cookies allowing cybercriminals to breach Google accounts and sustain valid sessions by renewing cookies, even after IP and passwords are changed.

Google has acknowledged recent reports of a malware family that steals session tokens. As a preventative measure against this type of attack, the company recommends enabling Enhanced Safe Browsing in Chrome. This feature offers protection against phishing and malware downloads, adding an extra layer of security for Chrome users.

by Danilo Venom

Maoholguin
al
Maoholguin found this interesting
MORE ABOUT: #Web Browsers#Google Chrome
Google Chrome iconGoogle Chrome
  4954
  • ...

Google Chrome is a free web browser developed by Google, originating from the open-source Chromium project. It emphasizes speed and minimalism, offering rapid start-up and web page loading. Its user interface is designed for simplicity, and it performs automatic updates in the background. Key features include extensibility by plugins/extensions, cloud sync, and Android sync. Notable alternatives to Google Chrome are Mozilla Firefox, Brave, and Vivaldi.

Related news

All news about Google Chrome »

External links

No comments so far, maybe you want to be first?
Gu