Russian Threat Actors Exploit Gmail App Passwords in Phishing Campaign

Threat actors suspected of being linked to Russia have exploited a Google account feature called "application specific passwords" (or app passwords) in a targeted phishing campaign aimed at accessing victims' emails. The details of this highly targeted campaign were disclosed by the Google Threat Intelligence Group (GTIG) and the Citizen Lab. This innovative social engineering tactic allows attackers to bypass two-factor authentication (2FA) by using application-specific passwords to access victims' Gmail accounts.