all InfoSec news
Info-Stealing Malware Now Includes Google Session Hijacking
Dec. 29, 2023, 7:10 p.m. |
GovInfoSecurity.com RSS Syndication www.govinfosecurity.com
A previously undiscovered critical exploit can allow threat actors to gain persistent, unauthorized access to Google services and connected accounts even after users have changed their passwords, cybersecurity researchers warn. They said the flaw enables hackers to manipulate the OAuth 2 protocol.
access accounts attackers connected critical cybersecurity exploit flaw google hackers hijacking info info-stealing malware malware oauth oauth2 passwords persistent protocol researchers services session session hijacking stealing threat threat actors unauthorized access vulnerability
More from www.govinfosecurity.com / GovInfoSecurity.com RSS Syndication
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Senior Security Researcher, SIEM
@ Huntress | Remote Canada
Senior Application Security Engineer
@ Revinate | San Francisco Bay Area
Cyber Security Manager
@ American Express Global Business Travel | United States - New York - Virtual Location
Incident Responder Intern
@ Bentley Systems | Remote, PA, US
SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May
@ EMW, Inc. | Mons, Wallonia, Belgium