Gmail accounts could still be vulnerable, as login cookies may have been compromised, Fox-IT said in a report to the Dutch government on Monday. Around 300,000 unique IPs in Iran were affected.
Using this cookie the hacker is able to log in directly to the Gmail mailbox of the victim and also read the stored emails.
– Fox-IT report
“Using this cookie the hacker is able to log in directly to the Gmail mailbox of the victim and also read the stored emails,” said the report. “Besides that, he is able to log in all other services Google offers to users like stored location information from Latitude or documents in Google Docs.”
Hackers broke into Dutch certificate authority DigiNotar and succeeded in creating a fraudulent certificate for *.google.com on 10 July, said Fox-IT, in an attack it has called ‘Operation Black Tulip’.