![](https://programming.dev/pictrs/image/29fcb3ea-6766-4c54-8ab6-c81571f5f728.jpeg)
![](https://lemmy.ml/pictrs/image/h1ChnLuBHr.png)
IIRC this is how those Elon musk crypto livestream hacks worked on YouTube back in the day, I think the bad actors got a hold of cached session tokens and gave themselves access to whatever account they were targeting. Linus Tech Tips had a good bit in a WAN show episode
lulz, but this is probably a big reason why this happened, discord servers pay our pretty well and profiting with this stuff probably got some legal teams a little pissy