Google article: Phishing campaign targets YouTube creators with cookie theft malware
With 2-factor authentication becoming more and more main-stream nowadays, attackers turn back to the ancient way – tricking people into downloading malware, thus getting the cookies information stored on their local computer, and being able to log in to their active accounts using those session cookies.
It seems that a qualified security software on a Windows system is still a must, and isn’t leaving any day soon.