JAKARTA – Some time ago it was revealed that a number of malware groups managed to get into cookies in Google Chrome. They will recover cookies and steal Chrome user data.

This method is considered unusual because the malware group uses cookies that have expired. They will extract and decrypt the login token stored in the Google Chrome database to log into the cookie.

From the report by Bleeping Computer some time ago, they can remain in the cookie even if the Google account owner has changed the password repeatedly. This is quite worrying, but Google has provided a response and a way to overcome it.

Google says that compromise via cookies is nothing new so they continue to improve security in Chrome. So far, they have secured accounts compromised by hackers via cookies.

“We routinely improve our defenses against such techniques and to safeguard users who fall victim to malware. "In this case, Google has taken action to secure each compromised account," said Google, quoted from 9to5google.

However, the statement about users finding it difficult to get rid of groups of malware from within cookies is not true. Google explains that users just need to turn off sync by going to settings and selecting the Turn off option.

“Stolen sessions can be undone by simply logging out of the affected browser or remotely revoked via the user's device page. "We will continue to monitor the situation and provide the latest information when necessary," explained Google.

Apart from exiting the browser, another way that is considered quite effective is to remove the malware from the device through an antivirus scan or resetting the browser data. Users can also enable Enhanced Safe Browsing mode in Chrome.


The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)