ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API
- Posted on July 2, 2026
- By The Hacker News
- 0 Views
- 1 min read
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API
Kaspersky reports ToddyCat’s Umbrij abuses headless Chromium and OAuth flows to extract Gmail authorization codes, enabling access via tokens.