GOOGLE HAS plugged a vulnerability in Gmail that allowed potential hackers to bypass authorisation processes and send mail from @gmail.com and @googlemail.com accounts.
Ahemd Mehtab, a security boffin and boss at Security Fuse, discovered the problem which is said to stem from the way that Google allows users to transfer between Google accounts without logging out.
It’s not a huge panic as it works only if the victim has blocked the sender, or the account is deactivated. Plus, Google has confirmed that the flaw is fixed, but it does seem like it was perfect fodder for someone seeking a bit of revenge trolling.
It appears that the problem was an anomaly, as it did not allow access to the Play ecosystem, which contains financial information. But in terms of privacy breaches, it’s still an absolute whopper, but unrealised, whereas in 2014, researchers managed to find a hack with a 92 per cent success rate. For the full article click here
from hacker samurai http://ift.tt/2eRnxiO
via IFTTT
No comments:
Post a Comment