Hackers Can Access Google Chrome Accounts Through Cookie Recovery

JAKARTA Malware that enters through cookies on Google Chrome is a nightmare for its users. If this happens, there is no hope for the security of the user's data.

From the recent findings of Bleeping Computer, several malware groups have found a way to recover expired cookies. When the cookies are successfully accessed, they will log into the user's account.

Worse yet, these intruders can log into Google's user account even though the account password has been changed. Just by recovering the cookies in Chrome, user data can be misused in an instant.

So far, there are six groups of malware that claim they can access expired cookies, two of which are Lumma and Rhadamanthys. They can take advantage of user data for themselves or sell them.

Meanwhile, 9to5google explains that this recovery in cookies requires installation of malware on desktop. This means that this malicious group can enter the cookies because Chrome users download software containing malware.

When intruders have entered the device, they will extract and describe the login token stored in the Google Chrome database.

From the data obtained, they will send a request to Google API to restore cookies.

If these intruders have succeeded in restoring the authentication of cookies once, this restoration process can be carried out repeatedly. Even though users have changed their account password, intruders still have a way to log back into their Google account.

To date, Google has not responded to the issue of access to the recovery of this cookies. To prevent this from happening to you, don't download software that is unclear about its origin because there is most likely malware in it.