Google fixes issue with Chrome ‘malware’ that allowed to break into users’ accounts

Google has patched a vulnerability that was exploited by malware families to steal session tokens through the MultiLogin OAuth endpoint. The tech giant reassured users that stolen sessions can be invalidated by logging out of the affected browser and encouraged users to enable Enhanced Safe Browsing in Chrome to protect against phishing attacks and malware downloads.