Hackers discover way to access Google accounts without a password::‘Exploit enables continuous access to Google services, even after a user’s password is reset,’ researcher warns

      • Redjard
        link
        fedilink
        English
        511 months ago

        This isn’t session hijacking but taking some magical token from Chrome that can generate sessions. Which has far more attack surface.