Google downplays reports of malware abusing an undocumented Chrome API to generate new authentication cookies, saying such token theft attacks "are not new" (Lawrence Abrams/BleepingComputer)

https://ift.tt/9lghrXA

Lawrence Abrams / BleepingComputer:
Google downplays reports of malware abusing an undocumented Chrome API to generate new authentication cookies, saying such token theft attacks “are not new”  —  Google is downplaying reports of malware abusing an undocumented Google Chrome API to generate new authentication cookies when previously stolen ones have expired.

from Techmeme https://ift.tt/Fm0iIHf