Google downplays reports of malware abusing an undocumented Chrome API to generate new authentication cookies, saying such token theft attacks "are not new" (Lawrence Abrams/BleepingComputer)
Google downplays reports of malware abusing an undocumented Chrome API to generate new authentication cookies, saying such token theft attacks “are not new” — Google is downplaying reports of malware abusing an undocumented Google Chrome API to generate new authentication cookies when previously stolen ones have expired.
http://www.techmeme.com/240106/p13?utm_source=dlvr.it&utm_medium=blogger#a240106p13