Hacking allows access to Google accounts without passwords | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker

Minute Mirror - Subscribe
Minute Mirror - Subscribe

A sophisticated hacking technique has been introduced that enables hackers to access Google accounts without the need for a password. This discovery emphasizes the importance of maintaining vigilance in securing Google passwords as even the most complex ones may not be sufficient to thwart cyber threats.

The analysis from CloudSEK, a security firm indicates that a malicious form of third-party cookies facilitated by malware is being employed by hacking groups to gain unauthorized access to private user data. These hacking groups are actively testing this method posing a significant risk to individuals.

The technique first came to light in October 2023 when a hacker posted on a Telegram channel revealing how accounts could be compromised by making them vulnerable through cookies. Websites and browsers use cookies to track users and enhance functionality but in this case Google’s authentication cookies which typically grant continuous access without requiring repeated login details are being targeted by hackers.

Despite Google Chrome being the world’s most popular browser with over 60% market share, it is currently engaged in a crackdown on third-party cookies. In a statement, Google emphasized its commitment to upgrading defence systems to ensure the safety of user accounts.

The security researchers caution that this new cyber attack highlights the complexity and stealth involved in such threats. Threat Intelligence Researcher at CloudSEK underscores the need for a continuous and comprehensive approach addressing both technical vulnerabilities and human intelligence to effectively counteract evolving cyber risks.

In response to the heightened threat, Google has taken action to secure compromised accounts. Users are also advised to take proactive measures such as regularly removing malware from their computers and enhancing browser security in Chrome to mitigate the risks of phishing and malware downloads.

This cyber threat underscores the ongoing need for constant monitoring and adaptation to both technical weaknesses and human intelligence. As cyber threats continue to evolve, a holistic approach to security remains crucial for safeguarding user data and privacy.


Click Here For The Original Story From This Source.

National Cyber Security