A bug was discovered that could reveal the private recovery phone number of Google accounts, putting users at risk. Google fixed the bug after being alerted by a security researcher. The exploit involved leaking account information and bypassing security measures. By automating the attack, a researcher could obtain a phone number in 20 minutes. This vulnerability could lead to targeted attacks and takeover attempts. Google paid a $5,000 bug bounty for the finding. Watch the video below for more details.
[Watch the video here](https://www.youtube.com/embed/aM3ipLyz4sw?feature=oembed)
