THREAT OPS › Threat News › Protecting Cookies with Device Bound Session Credentials
Protecting Cookies with Device Bound Session Credentials
<span class="byline-author">Posted by Ben Ackerman, Chrome team, Daniel Rubery, Chrome team and Guillaume Ehinger, Google Account Security team</span>
<p> Following our April 2024 <a href="https://blog.chromium.org/2024/04/fighting-cookie-theft-using-device.html">announcement</a>, Device Bound Session Credentials (DBSC) is now entering public availability for Windows users on Chrome 146, and exp
Attributed threat actors
- Earth LuscaG1006
MITRE ATT&CK techniques
- CredentialsT1589.001
Indicators of compromise
- https://blog.chromium.org/2024/04/fighting-cookie-theft-using-device.htmlurl
- https://developer.chrome.com/docs/web-platform/device-bound-session-credentialsurl
- https://w3c.github.io/webappsec-dbsc/url
- blogger.googleusercontent.comdomain