New Gmail Attack Bypasses Passwords and 2FA to Read All Email (forbes.com) 1 points by hammock 3y ago ↗ HN
[–] akerl_ 3y ago ↗ This feels like clickbait.The “bypass” is that it’s malware on the user endpoint, so it just lurks the data using the user’s existing session. So it’s not a flaw with Gmail or limited to that platform. [–] hancholo 3y ago ↗ thanks for the tl;dr. I hate clickbait
2 comments
[ 2.8 ms ] story [ 17.9 ms ] threadThe “bypass” is that it’s malware on the user endpoint, so it just lurks the data using the user’s existing session. So it’s not a flaw with Gmail or limited to that platform.