ToddyCat Umbrij Malware Abuses OAuth for Gmail API Access
The advanced persistent threat (APT) actor ToddyCat has deployed a sophisticated new malware variant called Umbrij that exploits OAuth authentication to access Gmail accounts through legitimate Google APIs. This technique allows attackers to bypass traditional email security controls and exfiltrate