Manuel BisseyJun 23, 2025

📬 Russian hackers bypass Gmail MFA using stolen app passwords—exploiting legacy settings to sidestep modern protections. A wake-up call to audit and disable unused access points.
#MFABypassAlert 🛑 #LegacyRisk 🔐

https://www.bleepingcomputer.com/news/security/russian-hackers-bypass-gmail-mfa-using-stolen-app-passwords/

Russian hackers bypass Gmail MFA using stolen app passwords

Russian hackers bypass multi-factor authentication and access Gmail accounts by leveraging app-specific passwords in advanced social engineering attacks that impersonate U.S. Department of State officials.

BleepingComputer