Urgent FBI warning for all Gmail users

Google offers so many free services that it’s hard not to become a user of the company. Only because of the search engine they have, which is number one in the world, but within it they offer many other platforms such as Gmail, Google Maps or YouTube, to mention the most famous ones.

This has made Gmail the most popular email service at the moment, and at a minimum, users have an account with which you can access all the other services offered by the company, in addition to being able to use the Internet.

According to Demandsage, in 2024. Gmail has over 1.8 billion users worldwide.

which did not go unnoticed by cybercriminals. And this service is not only one that attackers prefer to use to send fraudulent emails, but, as the FBI has discovered, they use a new scam method to steal our Gmail account and everything associated with it, for example, on social networks, platform accounts or even in communication with the bank.

According to FBI cybersecurity experts, an increase in the number of attacks has been recorded They exploit a session cookie vulnerability.. With its help, hackers can even bypass two-factor authentication systems, which have so far been one of the main and most effective protection measures.

Like the vast majority of attacks, this one begins with the victim’s failure either because You visit a fraudulent website or click on a link that contains malware.in both casesand downloads malicious software to the corresponding device

which gives freedom of action to this cyber attack.

With it, hackers can steal login cookies, which are essentially files that save our login credentials so we don’t have to constantly enter passwords. Having the ability to reproduce them, attackers can access all our accounts for which we have ever checked the “Remember this device” option without the need to know your username, password or two-factor authentication codes.

FBI Recommendations to Protect Us

Authorities recommend a number of actions to protect email accounts:

• Delete cookies from your internet browser regularly.
• Do not select the “Remember this device” checkbox when logging in.
• Access websites only with a secure connection (HTTPS).
• Periodically review your login history in your account settings.

For its part, Google has acknowledged that cookie theft affects users online and is working on new solutions. The company believes that security cookies are a lucrative target for attackers and that this problem will worsen over time.