THURSDAY, JULY 2, 2026 48° E  /  GLOBAL TECH · SUMMARISED SUBSCRIBE
AI, business, devices, policy — global tech, summarised every 30 minutes.
Security · 2h ago

ToddyCat's Umbrij Malware Hijacks Gmail via OAuth

By Meridian48 News Desk · Summarised from The Hacker News ·

A new malware called Umbrij, linked to the ToddyCat threat actor, abuses OAuth tokens to access victims' Gmail accounts through Google APIs. Kaspersky reports the campaign targets corporate email communications, focusing on API-based access compromise. The malware enables surreptitious email theft without triggering standard security alerts.

Meridian48 take
While OAuth abuse is not new, Umbrij's focus on corporate Gmail via APIs underscores a growing trend of attackers bypassing traditional email security controls.
Read the full reporting
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API →
The Hacker News
oauth-abusegmail-malware
More security briefs
Go deeper on security
AllAIStartupsBusinessDevicesPolicySecurityDev ToolsPakistan