Malware abuses Google OAuth endpoint to ‘revive’ cookies, hijack accounts.
Multiple information-stealing malware families are abusing an undocumented Google OAuth endpoint named “MultiLogin” to restore expired authentication cookies and log into users’ accounts, even if an account’s password was reset.
Read in full here:
This thread was posted by one of our members via one of our news source trackers.