Google has stepped in to address a security flaw that could have made it possible to brute-force an account’s recovery phone number, potentially exposing them to privacy and security risks.
The issue, according to Singaporean security researcher « brutecat, » leverages an issue in the company’s account recovery feature.
That said, exploiting the vulnerability hinges on several moving parts,
