This newly discovered threat allows attackers to bypass need to compromise Gmail login credentials and 2FA to silently read emails.
Among the best practice Gmail security protections, strengthening your login credentials and enabling two step verification are high on the list as I mentioned in an article over the weekend. But what if I were to tell you that security researchers have now uncovered evidence of one likely state-sponsored attack group that has found a way to bypass even these protections?