Hackers hack Google accounts without requiring a password. Hackers have found a way to gain access to Google accounts without a user’s password. Allowing unfettered access even after the password is reset. Google is upgrading its security to protect users from malware and phishing attacks.
Cybercriminals have found a way to gain access to people’s Google accounts without a password, and the new method allows hackers to continue accessing Google services even after a user’s password is reset.
The new vulnerability was analyzed by security company CloudSEK and reported by the Independent. Furthermore, this issue first came to light when a hacker published about it on a Telegram channel in October 2023.
The independent file mentions how Google accounts may have been compromised due to a vulnerability in third-party cookies. Which are used by websites and browsers to music users and enhance their performance.
CloudSEK’s blogpost states
Hackers hack Google accounts without requiring a password. Additionally, Google’s authentication cookies help users store their login details and log in without having to re-enter them. But, hackers have now found a way to bypass two-factor authentication and retrieve those cookies.
CloudSEK’s blogpost states, “This allows continued access to Google’s offerings. Even after a user resets their password… This enables a non-stop use of both technical vulnerabilities and human intelligence resources to stay ahead of the growing cyber threat.” “Highlights the need for monitoring.” Threat.”
Meanwhile, independent reports state that Google Chrome is currently in the process of upgrading its security and protecting customers from becoming victims of malware. A Google statement cited by The Independent said. “We regularly improve our security against such tactics and to make users comfortable with malware. In this instance, Google took action to provide relief to any compromised loans when it was discovered,” Google said in an announcement.
Customers generally require to take steps to rid their laptops of any malware, and we recommend turning on Safer Surfing in Chrome to protect against phishing and malware downloads. The organization said similarly
Hacking companies net big discoveries
Hackers hack Google accounts without requiring a password. Unfortunately, hackers have already integrated the advantage into their information-stealing malware to break into the Google accounts of unsuspecting victims.
In mid-November 2023, after the use became public. “A threat actor…subsequently reverse engineered this script and integrated it into the Lumma Infostealer…protecting the process with advanced blackboxing techniques,” CloudSEK notes. Is.
After that, the team behind the Lumma data stealer updated it the most. Making it even more difficult for Google’s detection systems to detect.
CloudSEK says the exploit has now extended “rapidly” among different opportunity businesses. Creating the threat to account holders even more reasonable– Rhadamanthis, RisePro, Meduza and Stealk Stealer have reportedly already deployed the method. Has been included.
Read This: 10 First Class Free Vector Design and Image Websites