Bleeping Computer

Google: Malware abusing API is standard token theft, not an API issue

Google is downplaying reports of malware abusing an undocumented Google Chrome API to generate new authentication cookies when previously stolen ones have expired. In late November 2023, ...
techtimes

Chrome Malware: Restores Cookies to Get Access to Your Google Account via API

There is a new malware found that takes advantage of Google's use of cookies via Chrome, and through this, it can utilize the data to allow authentication to one's account and access it. This is now ...