all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Info-Stealing Malware Now Includes Google Session Hijacking

Add to bookmarks
Dec. 29, 2023, 7:10 p.m. |

GovInfoSecurity.com RSS Syndication www.govinfosecurity.com

Google OAuth2 Vulnerability Being Actively Abused by Attackers, Researchers Warn
A previously undiscovered critical exploit can allow threat actors to gain persistent, unauthorized access to Google services and connected accounts even after users have changed their passwords, cybersecurity researchers warn. They said the flaw enables hackers to manipulate the OAuth 2 protocol.

access accounts attackers connected critical cybersecurity exploit flaw google hackers hijacking info info-stealing malware malware oauth oauth2 passwords persistent protocol researchers services session session hijacking stealing threat threat actors unauthorized access vulnerability

Visit resource

More from www.govinfosecurity.com / GovInfoSecurity.com RSS Syndication

Microsoft Releases New-Open Source Tool for OT Security 23 hours ago | www.govinfosecurity.com
address analysis attacks can +30
Rubrik Execs on How Going Public Will Drive More Innovation 1 day ago | www.govinfosecurity.com
co-founder cpo cto customer +16
FTC Finalizes Health Breach Notification Rule Update 1 day ago | www.govinfosecurity.com
agency apps books breach +15
Tech Titans, AI Leaders Join New Federal AI Security Board 1 day, 1 hour ago | www.govinfosecurity.com
ai risks ai safety ai security alphabet +20
State AGs, Industry Groups Urge Action in Change Health Saga 1 day, 2 hours ago | www.govinfosecurity.com
action aid change change healthcare +8
Strengthening Asset Management, Security in Rail Transport 1 day, 2 hours ago | www.govinfosecurity.com
agency asset asset management challenges +20
Health Analytics Firm Reports Breach Affecting 1.1 Million 1 day, 5 hours ago | www.govinfosecurity.com
amp analytics breach business +18
Webinar | From Risk to Resilience: EMEA's Container Security Reinvention 1 day, 6 hours ago | www.govinfosecurity.com
container container security emea resilience +3
Webinar | Charting the Course: The Right Path to "Shifting Left" for Container Security Excellence 1 day, 6 hours ago | www.govinfosecurity.com
container container security course path +3

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs