Google Downplays Gmail Security Fix

By

Google Inc. has quietly patched a security bug in its Gmail service, but the company is downplaying the severity of the risk to its users. I’m glad to see that is was patched and that Google is keeping on top of coding issues. The site Elhacker.net goes into great details on the flaw and can be visited by clicking the link below.

Google confirmed that it made “modifications” to Gmail to cover an attack vector that allowed malicious hackers to take complete control of a victim’s Gmail account. The company’s confirmation followed the blow-by-blow public disclosure of the bug on the elhacker.net Web site. The elhacker.net advisory described how a Gmail user token could be used in conjunction with other hacking tricks to take control of the victim account.

Comments are closed.