Hackers have found a new way to break into people’s Google accounts without needing their passwords. They’re using a type of harmful software, called malware, which takes advantage of small files called “cookies” that websites use to remember who you are.
Researchers at a security company called CloudSEK discovered this problem. They found out that hackers are actively trying this method to get into people’s private data. The hackers are specifically targeting Google’s cookies, which normally help users stay logged in without having to constantly re-enter their passwords. By getting their hands on these cookies, the hackers can sneak past extra security measures like two-factor authentication.
This is especially concerning because of how many people use Google Chrome, the most popular web browser, which had more than 60% of the market last year. Google Chrome is trying to limit these third-party cookies to stop this kind of hacking.
Google, aware of this issue, is working to protect accounts that might have been affected. They’re also reminding everyone to keep their devices free from malware. Google suggests using a feature called Enhanced Safe Browsing in Chrome, which helps protect against these kinds of attacks and bad downloads.
The people who found this hacking method say it’s tricky and not easy to spot. They explain that this way of hacking can keep giving attackers access to someone’s Google services, even after the actual password is changed. This shows why it’s important to always be on the lookout for new types of cyberattacks and to keep up with ways to protect yourself online.
and then