Researchers say a live phishing proxy may turn a single stolen Google Password Manager PIN into broad access to synced credentials, but the full exploit path remains unverified.
A reported phishing technique puts the spotlight on the recovery layer behind Google Password Manager, where convenience features can become high-value targets.