Summary:
-
Exploit Discovered: Cybercriminals found a way to bypass Google’s email verification process for creating Google Workspace accounts, enabling them to impersonate domain holders.
-
Sign-In Abuse: Using the “Sign in with Google” feature, attackers accessed third-party services by creating requests that bypassed the verification required to validate domain control.
-
Google’s Response: Google fixed the vulnerability and stated that no domains previously associated with Workspace accounts were affected. The attackers used this method to impersonate domain holders rather than to abuse Google services directly.
!