In May, Google's threat intelligence team found a zero-day exploit targeting a web administration tool. The exploit was a Python script that bypassed two-factor authentication after valid credentials ...