Hackers discover way to access Google accounts without a password::‘Exploit enables continuous access to Google services, even after a user’s password is reset,’ researcher warns

    • Redjard
      link
      fedilink
      English
      511 months ago

      This isn’t session hijacking but taking some magical token from Chrome that can generate sessions. Which has far more attack surface.