Security News Malware Using Google MultiLogin Exploit to Maintain Access Despite Password Reset TheHackerNews Daniel Bender Jan 3, 2024 Information-stealing malware is exploiting an undocumented Google OAuth endpoint called MultiLogin to hijack user sessions.