all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New Google Cookies Exploit Allows Access After Password Reset

Add to bookmarks
Jan. 3, 2024, 3:29 p.m. | Tushar Subhra Dutta

GBHackers On Security gbhackers.com

A Critical Google Cookies exploit involves manipulating or stealing user cookies, which store authentication information, to gain unauthorized access to accounts.  Hackers exploit this illicit mechanism to:- A developer, PRISMA, discovered a major Google cookie exploit in Oct 2023 that allows persistent access post-password reset. A threat actor later integrated it into Lumma Infostealer, causing […]


The post New Google Cookies Exploit Allows Access After Password Reset appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News …

access accounts actor authentication computer security cookie cookies critical cyber security developer exploit google google cookies hackers information major mechanism password password reset persistent prisma reset stealing store threat threat actor unauthorized access vulnerability

Visit resource

More from gbhackers.com / GBHackers On Security

U.S. Govt Warns of Massive Social Engineering Attack from North Korean Hackers 4 hours ago | gbhackers.com
advanced advisory agency attack +31
Cisco IP Phone Vulnerability Let Attackers Trigger DoS Attack 5 hours ago | gbhackers.com
access attack attackers attacks +24
Threat Actors Renting Out Compromised Routers To Other Criminals 6 hours ago | gbhackers.com
anonymization apt apt group botnet +27
New “Goldoon” Botnet Hijacking D-Link Routers to Use for Other Attacks 7 hours ago | gbhackers.com
april attacks botnet control +23
LayerX Security Raises $24M for its Browser Security Platform, Enabling Employees to Work Securely From … 22 hours ago | gbhackers.com
browser browser security capital cyber security +24
GoldDigger Malware Using Deep Fake AI Photos To Hijack Bank Accounts 22 hours ago | gbhackers.com
access accounts artificial intelligence bank +30
Cuttlefish 0-click Malware Hijacks Routers & Captures Data 22 hours ago | gbhackers.com
0-click april campaign click +19
ArubaOS Critical Vulnerability Let Attackers Execute Remote Code 22 hours ago | gbhackers.com
aruba arubaos attackers buffer +26
VNC Is The Hacker’s New Remote Desktop Tool For Cyber Attacks 22 hours ago | gbhackers.com
access attacks challenges credentials +32

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States
View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States
View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com
View more jobs