Malware dev says they can revive expired Google auth cookies

21-Nov-23

The ‘LummaC2’ malware, which steals information, is advertising a new function that purports to let hackers retrieve deleted Google cookies, so giving them the ability to take control of Google accounts. If these cookies were to be restored, Lumma operators would be able to access any Google account without authorization, even after the account’s legal owner has signed out or their session has ended.



Session cookies are specialized web cookies that enable automatic website service logins during a browsing session. These cookies often have a short lifespan for security reasons to prevent misuse in the event that they are stolen, as they enable anybody with them to log in to the owner’s account.

Read More…