Cybercriminals are using a new type of malware named ‘MultiLogin’, which abuses Google’s OAuth endpoint to sign back into user accounts by reviving expired cookies, according to a report by BleepingComputer. The malware reportedly pilfered tokens and account data from Google accounts, including saved passwords to ensure ongoing access to these accounts. Google has yet to acknowledge or suggest mitigation measures for this threat.
WordPress users targeted by devious new credit card skimmer malware
E-commerce websites running on WordPress are being targeted by cybercriminals who are inserting malicious JavaScript code to steal payment information, Sucuri cyber security researchers have