close

Discovered in

GeekLad

GeekLad
14 Favs

Find other sites about

Related Sites

  • BREAKING: New Gmail Security Flaw. More Domains Get Stolen!

    Badly written post, takes too freaking long to get to the details, but thumbing it up since this sounds serious. be careful. *Logout* of google when not using gmail or any of it's other services. From the page: " The victim visits a page while being logged into GMail. Upon execution,... more

    Reviewed by lonetwin Nov 22 2008, 04:45am ( 13 reviews ) makeuseof.com

    8,453 views
  • Showing 8 of 13
  • Reviews of the site
  • Join StumbleUpon or login to add a review! default avatar

  • Rated by 88halos on Dec 22 2008, 10:45am

    Good luck to all those affected! I agree with lonetwin, though; it takes far, far too long to get to the details of the exploit.

  • Rated by karenzara on Nov 22 2008, 8:30am

    Spreading the word. If you use GMail and/or if you own any domains, you MUST read this.

  • Rated by jamiet on Nov 22 2008, 6:40am

    From the page: "BREAKING: New Gmail Security Flaw. More Domains Get Stolen!"

  • Rated by BigPond on Nov 22 2008, 5:08am

    Possible Gmail security flaw leads to domain names being stolen. Even if it's not specifically a Gmail issue, it's worth looking at your own set up in terms of how you administer your domains.

  • Rated by saadkamal on Nov 22 2008, 4:46am

    Gmail's security flaw..Webmaster Pays BIG price....

  • Rated by lonetwin on Nov 22 2008, 4:45am

    Badly written post, takes too freaking long to get to the details, but thumbing it up since this sounds serious. be careful. *Logout* of google when not using gmail or any of it's other services. From the page: " The victim visits a page while being logged into GMail. Upon execution, the page performs a multipart/form-data POST to one of the GMail interfaces and injects a filter into the victimâ€s filter list. In the example above, the attacker writes a filter, which simply looks for emails with attachments and forward them to an email of their choice. This filter will automatically transfer all emails matching the rule. Keep in mind that future emails will be forwarded as well. The attack will remain present for as long as the victim has the filter within their filter list, even if the initial vulnerability, which was the cause of the injection, is fixed by Google. original page: http://www.gnucitizen.org/blog/google-gmail-e-mail-hijack-technique/ "

  • Rated by IndianGuru on Nov 21 2008, 6:24pm

    GMail users better take preventive action as outlined here.

  • Rated by GeekLad on Nov 21 2008, 6:08pm

    MakeUseOf.com and other domains have recently been hijacked via a Gmail security flaw. Help and try to catch the guy that did this! There's a lot of good info in the post