TechFlow reported that cryptocurrency cloud service provider Retool disclosed details of the $15 million theft from Fortress Trust, with Google account cloud synchronization identified as the primary vulnerability.
Retool's Engineering Lead Snir Kodesh stated: "Google Authenticator's cloud sync became the attack vector. We originally had multi-factor authentication in place, but due to a Google update, our multi-factor authentication silently reverted to single-factor authentication—without administrators realizing it."




