Google offers so many services for free that it is difficult not to be a user of the company. Only because of the search engine they have, which is number one in the world, but within it they offer all kinds of other platforms such as Gmail, Google Maps or YouTube to mention the most famous.
This has made Gmail the most popular email service at the moment, and at a minimum users have an account from which you can access all the other services that the company offers, in addition to being able to browse the Internet.
According to Demandsage data, in 2024 Gmail has more than 1.8 billion users worldwidesomething that has not gone unnoticed by cybercriminals. And this service is not only one of those preferred by attackers to send their fraudulent emails, but as the FBI has discovered, they are using a new scam method to steal our Gmail account and everything associated with it, such as social networks, accounts on platforms or even in communications with the bank.
As reported by FBI cybersecurity experts, an increase in attacks has been detected They exploit a vulnerability related to session cookies. With it, hackers can even bypass two-factor authentication systems, which until now were one of the main and most effective protection measures.
Like the vast majority of attacks, this one begins with a failure by the victim, either because You access a fraudulent website or click on a link that contains malwarein both casesand downloads malicious software to the device in question which gives free rein to this cyber attack.
With it, hackers are able to steal login cookies, which are basically the files that save our access data so we don’t have to constantly enter passwords. By being able to replicate them, attackers can access all our accounts for which we have ever checked the “Remember this device” option without needing to know the username, password or two-factor authentication codes.
The FBI’s recommendations to protect us
Authorities recommend a series of actions to protect email accounts:
- Regularly delete cookies from your internet browser.
- Avoid checking the “Remember this device” option when signing in.
- Only access websites with a secure connection (HTTPS).
- Periodically review your login history in your account settings.
For its part, Google has recognized that cookie theft affects users across the web and is working on new solutions. The company believes that security cookies are a lucrative target for attackers and that it is a problem that will worsen over time.
#FBIs #urgent #warning #Gmail #users
