Hackers Discover the Way to Access Google Accounts without a Password: Security researchers have identified a concerning security vulnerability that could potentially grant unauthorized access to Google accounts without the need for passwords. CloudSEK, a cybersecurity firm, conducted an analysis revealing that a sophisticated form of malware exploits third-party cookies to compromise individuals’ private data. The malware, currently undergoing active testing by hacking groups, was first disclosed in October 2023 when a hacker shared details on a Telegram channel.
The exploit leverages a vulnerability associated with cookies, which are integral to the website and browser functionality, aiding in user tracking and enhancing efficiency. Google authentication cookies, designed to allow users seamless access to their accounts without constant password entry, became the target for the hackers who found a method to retrieve these cookies, effectively bypassing two-factor authentication.
The Google Chrome web browser, boasting a market share exceeding 60% in the previous year, is currently taking measures to address the issue of third-party cookies. In response to the discovery, Google issued a statement affirming its commitment to regularly fortifying defenses against such techniques. They also reassured users that compromised accounts would be secured promptly.
“We routinely upgrade our defenses against such techniques and to secure users who fall victim to malware. In this instance, Google has taken action to secure any compromised accounts detected,” stated Google. Additionally, the company recommended users take proactive steps to remove any malware from their computers and advised enabling Enhanced Safe Browsing in Chrome for added protection against phishing and malware downloads.
The researchers at CloudSEK emphasized the complexity and stealth of modern cyber attacks, pointing out that this particular exploit allows continuous access to Google services even after a user resets their password. Pavan Karthick M, a threat intelligence researcher at CloudSEK, stressed the importance of ongoing monitoring of both technical vulnerabilities and human intelligence sources to proactively stay ahead of emerging cyber threats. The incident underscores the need for constant vigilance and a multi-faceted approach to cybersecurity.