ALERTS – MALWARE USING GOOGLE MULTILOGIN EXPLOIT TO MAINTAIN ACCESS DESPITE PASSWORD RESET
MALWARE USING GOOGLE MULTILOGIN EXPLOIT TO MAINTAIN ACCESS DESPITE PASSWORD RESET 📗 Date: 04 Jan, 2024Source: The Hacker News Information stealing malware are actively taking advantage of an undocumented Google OAuth endpoint named MultiLogin to hijack user sessions and allow continuous access to Google services even after a password reset. According to CloudSEK, the critical […]