A new malware uses third-party cookies in Chrome to access users’ Google account and steal their credentials.
Given the increase in security in many smart devices in Spain, cybercriminals have to go out of their way to try to steal user data, and this is causing more and more original methods to do so. The last one that has been discovered, use cookies to do it.
This is a method that is currently affecting Google Chrome users, and they can lose their accounts—and many of the things that are linked to it—just by visiting a web page that they should not. or install an extension of unknown origin.
The company has not yet fixed it, but is working to fix the problem, which was first discovered last October, when it was revealed on a Telegram channel. Worst of all, it can even affect users who change their passwords.
Steal Google account
The way this malware works is relatively simple, since it uses temporary files to recover users’ login credentials and thus be able to steal their Google account. This is possible thanks to a vulnerability that leaves Google accounts accessible using this method.
Cookies store useful information on the device used by the browser about the data of the sites visited, and among them there may be personal data. Criminals are using this method to save the login details of your own Google account.
Additionally, this method bypasses two-step authentication, if any, as Google uses it to log in quickly after successfully entering data in a session for the first time. This, according to AndroidPolice It would also allow cybercriminals to log in, even if the user has changed their password.
Of course, it seems that this method only works once after changing the password. Even so, this is enough for them to steal an account and all the services associated with it. Google is working on solving this vulnerability in its browser, but for now, it is best not to visit unreliable sites to install software, since it is being used by at least 6 groups of cybercriminals.
