Google Accounts at Risk from Expired Cookie Hacking Method
-
Hackers found exploits to restore expired Google session cookies, granting them unauthorized account access.
-
The MultiLogin endpoint allows syncing across Google services but has become an exploit target.
-
First uncovered by threat actor PRISMA, CloudSEK investigated the cookie restore method.
-
Sign out of affected browsers, enable Enhanced Safe Browsing, update passwords regularly, and use antivirus software.
-
Google is aware and advises signing out of compromised browsers to revoke the expired session cookies.