Lawrence Abrams / BleepingComputer:
Google downplays reports of malware abusing an undocumented Chrome API to generate new authentication cookies, saying such token theft attacks “are not new” — Google is downplaying reports of malware abusing an undocumented Google Chrome API to generate new authentication cookies when previously stolen ones have expired.
Lees verder op Tech Meme