Shulou(Shulou.com)12/24 Report--

CTOnews.com, Nov. 23 (Xinhua)-- Alon Gal, an expert at cyber security company Hudson Rock, was the first to discover malware called Lumma (aka LummaC2), which was used by hackers to restore expired Google cookie to hijack Google accounts.

Session cookies is a special network cookies in which users ensure that they remain logged in for a period of time. For security reasons, both websites and browsers impose restrictions on the limitation of cookies to avoid abuse.

Lumma malware uses the keys in the recovery file to recover expired cookies (for Google cookies only), but this recovery is limited to once, and each key can be used twice.

Attackers charge a subscription fee of $1000 a month (CTOnews.com Note: currently about 7160 yuan). The malware has not yet been verified by security researchers or Google, but stealer Rhadamanthys announced a similar feature in a recent update.

A few days after contacting Google, Lumma developers released an update claiming it was an additional fix to circumvent new restrictions introduced by Google to prevent cookie recovery.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.