Saturday, July 13, 2024
Google search engine
HomeUncategorizedThe Google 0-day all Infostealer groups are exploiting

The Google 0-day all Infostealer groups are exploiting

TL;DR — Google cookies that don’t expire and work even when the account’s password is changed, huge advantage for cybercriminals, nothing done by Google.

A month ago Hudson Rock reported that Lumma Infostealer group are going to implement a new feature which will allow them to revive expired Google cookies (https://www.infostealers.com/article/lumma-malware-can-allegedly-restore-expired-google-auth-cookies/)

We warned that this will cause a shift in cybercrime, and that hackers will be able to infiltrate accounts with ease.

Today, even despite attempts to alert Google over a month ago that there is an ongoing 0-day being exploited by Infostealer groups, the exploit is only becoming more widely used, with over 5 Infostealer groups taking advantage of the exploit.

In addition, Hudson Rock spoke to a developer who claims they came up with this 0-day back in October and was selling it independently. They sent us a video of the exploit which you can watch here — https://www.youtube.com/watch?v=NzAtZzzFoOs

We expect to see this feature implemented by all Infostealer groups until some action is taken by Google.

Why aren’t Google doing anything about it? We speculate that the reason is that the trade off with blocking the cookie reviving mechanism is not worth it because it serves some kind of user ease of use.

We’ll follow up on developments, don’t forget to sign up with your email to receive our updates!

Epsilon Infostealer


December 30, 2023

Rugmi Malware


December 30, 2023

Infostealer Exploit


December 29, 2023

Stay informed with the latest insights in our Infostealers weekly report. Explore key findings, trends and data on info-stealing activities.

Copyright 2023 © All rights Reserved. infostealers.com

Read More

RELATED ARTICLES

4 COMMENTS

  1. I have been surfing online more than 3 hours today yet I never found any interesting article like yours It is pretty worth enough for me In my opinion if all web owners and bloggers made good content as you did the web will be much more useful than ever before

  2. I played on this online casino site and succeeded a significant sum of money, but eventually, my mother fell sick, and I needed to take out some funds from my casino account. Unfortunately, I encountered difficulties and could not complete the withdrawal. Tragically, my mother died due to such online casino. I request for your support in reporting this site. Please assist me to achieve justice, so that others won’t have to experience the hardship I am going through today, and prevent them from shedding tears like mine. 😭😭😭�

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -
Google search engine

Most Popular

Recent Comments