Stealing user authentication tokens would’ve given an attacker full access to that user’s account.

Leave a Reply