The Federal Intelligence Service (FBI) in the US, through its Atlanta branch, recently warned the public that cybercriminals gain access to email accounts by stealing cookies from a victim’s computer.

A “cookie” is a small piece of data that a website sends to your computer, allowing the website to remember information about your session, such as login details, preferences or items in your shopping cart. “Remember-Me cookies” are specific to a user’s login to the website, and often last for 30 days before expiring.

This very type of cookie helps a user log in without having to keep entering their username, password, or multi-factor authentication (MFA) all the time.

Typically, this type of cookie is created when a user clicks the “Remember this device” checkbox when logging in to a website. If a cybercriminal obtains the Remember-Me cookie from a user’s recent webmail login, they can use it to log in as a user without needing a username, password, or MFA.

Cybercriminals are increasingly focusing on stealing Remember-Me cookies, and using them as the preferred way to access a victim’s email.
Victims unknowingly provide their cookies to cybercriminals when they visit suspicious websites or click phishing links that download malware onto their computer.

Here are the FBI’s tips to protect yourself from putting yourself at risk:

  • You regularly clear cookies from your Internet browser, following the relevant instructions.
  • Be aware of the risks of clicking the “Remember me” checkbox when connecting to a website.
  • Do not click on suspicious links or websites. Only visit websites with a secure connection (HTTPS) to protect your data.
  • Track your device’s recent login history from your account settings.

The FBI’s announcement should in no way discourage you from setting up MFA where the feature is available. It’s the best step you can take to secure your accounts.