Why is my Google account being hacked?

A Google security researcher has been forced to abandon a project that had been going around the company, because the company refused to allow it to be used to authenticate users.
The hack, which is described by the researchers as a “master key to the breach”, was triggered by an email sent from an administrator to a company official.
“There’s a company called Google, and they’ve been trying to get their software to be more secure.
And I’m saying, ‘You don’t want your software to get hacked by someone using a master key, do you?'”
The administrator said that the company’s policies were preventing them from using the code, but the company said they couldn’t.
The researcher said: “I think I should probably tell you about what happened next.”
I started seeing emails from the Google staff in the afternoon and the next day, I received an email saying: ‘Your code has been compromised, we have no access to it and we have to delete it from your computer.'””
I’ve had a couple of email chains where they say ‘We don’t allow this to be seen on the Internet’.
“I told them, ‘I’m not going to be able to see anything about it, but I’m telling you that you have to erase the code’.”
The email said that deleting the code was “the best thing you can do”, and warned that anyone who accessed the code would be banned from the program for life.
“The code is not used for anything other than Google’s security purposes, and the deletion of the code is the best thing we can do,” it said.
The researchers have now removed the code from the system and have contacted Google to request it be reinstated.
However, Google said that it was not aware of the issue and was not responsible for the software being used by anyone.
A spokesperson said:”The Google certificate program was developed by the Certificate Authority, so there is no risk that anyone with a Google account can steal credentials.”
However, there are times when we are asked to create certificates that are for a particular group of users.
“These certificates are only created for those users that have a Google Account and the use of the certificates requires the account to have been created by that group.”
We have asked that this issue be resolved so that all of the users who have a certificate associated with their Google Account are allowed to use that certificate.
“The researchers said that they would be working with Google to have it restored.