Bleeping Computer

Malware abuses Google OAuth endpoint to ‘revive’ cookies, hijack accounts

Multiple information-stealing malware families are abusing an undocumented Google OAuth endpoint named "MultiLogin" to restore expired authentication cookies and log into users' accounts, even if an ...
The Verge

Reminder: Google is about to start purging inactive accounts

Posts from this topic will be added to your daily email digest and your homepage feed. At the end of this week, Google will begin deleting accounts that have been inactive for at least two years under ...