Cyberstalkers Are Exploiting Chrome Sync to Spy on Victims
6 hours ago
- #Chrome
- #cybersecurity
- #privacy
- Cyberstalkers are using Chrome's sync feature to spy on victims by signing into a Google account on their device without their knowledge.
- The attack requires brief physical access to the victim's phone, allowing the attacker to add their account and enable sync, which copies browsing history and saved passwords.
- Chrome's popularity (over 69% market share) makes this a widespread threat, affecting millions globally, including on desktop platforms.
- No warnings appear in Chrome when a new account is added, and victims' security alerts don't trigger because the account belongs to the attacker.
- Recommendations for Google include adding notifications for new account sign-ins and sync status indicators to improve user awareness.
- Protection steps include checking signed-in accounts in Chrome, using Incognito mode for sensitive browsing, securing devices with strong passcodes, and being cautious about physical access.