Cloudflare warns that hackers no longer require your password to access your accounts.
Cloudflare issued its 2026 Threat Intelligence Report on March 3rd. The report reveals a wealth of valuable information, as the company monitors 230 billion threats per day.ily. One of the key takeaways is that attackers no longer need to know a victim's password to access their accounts.
We'll explain the most common methods currently in use, according to a Cloudflare report. We'll also provide recommendations to help you protect your accounts and prevent hackers from accessing your social media accounts, email, or any other accounts you use daily.
Stolen sessions are replaced by password guessing.
Traditionally, hackers have used strategies like phishing attacks to steal passwords and gain access to accounts. However, Cloudflare has discovered that they are now stealing active sessions. They use malware such as LummaC2, which is capable of extracting session tokens from victims' devices.
When you log in to a browser on platforms like Facebook or Gmail, for example, you enter your password, along with two-step verification (if available), and have the option to save it. When you log in again, you don't need to re-enter your password; the session remains active. This is precisely what attackers exploit.
An attacker can steal the session token, eliminating the need for the account password or two-factor authentication. According to this report, 54% of ransomware attacks resulted from stolen credentials by cybercriminals. This is a serious problem that highlights the need to focus not only on using strong passwords but also on achieving comprehensive security.
How to avoid these problems
It's essential to follow good internet habits. For example, log out, especially from suspicious devices, to avoid leaving your accounts open. You can also delete cookies. Choosing "remember password" can lead to problems. Check the addresses of the websites you visit and only log in to secure sites.
Furthermore, it's essential to protect your device well. Make sure you use a good antivirus program that helps detect and remove malware. Regularly updating it also helps eliminate potential security vulnerabilities that could be exploited to launch attacks.
On the other hand, caution should be exercised when using public Wi-Fi networks. In this case, it is preferable to use a Virtual Private Network (VPN) to encrypt the connection and prevent your information from being disclosed to third parties.
Eventually, attackers change their strategies for gaining access to accounts. Now, instead of stealing passwords, they steal the session token. This also allows them to bypass two-factor authentication. It is essential to take preventative measures and not grant attackers any easy, unauthorized access.