Tuesday, January 02, 2007

GMail Vulnerable To Contact List Hijacking

By simply logging in to GMail and visiting a website, a malicious website can steal your contact list, and all their details. The problem occurs because Google stores the contact list data in a Javascript file. So far the attack only works on Firefox, and doesn't appear to work in Opera or IE7.

Read more HERE.


UPDATE : Serious Gmail vulnerability fixed

It's a little concerning that this problem even existed, but knowing the fix was made only hours after it was reported does warrant some level of reassurance.

Read more HERE.


Post a Comment

Links to this post:

Create a Link

<< Home