Exploiting Google’s MultiLogin Endpoint: A Persistent Threat

In October 2023, a significant cybersecurity issue emerged when a developer known as PRISMA uncovered an exploit in Google’s OAuth system. This exploit, involving an undocumented endpoint called “MultiLogin”, allows attackers to generate persistent Google cookies, enabling unauthorized access to Google services even after users reset their passwords. This exploit has been integrated into multiple … Read more