Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Corrects Gmail Security Flaw

Posted by Zonk on from the seekrit-communications dept.

0110011001110101 writes "Google said Wednesday it has fixed a problem in its widely used email program that allowed hackers to break into peoples Gmail accounts to read messages and pose as legitimate email users. Security researchers in Spain exposed a flaw in the way Google authenticates its users, allowing the breach in the system that counts more than 5 million users. The process for exploiting Gmail was posted to a hacker web site." From the article: "Google spokesperson Sonya Boralv said only users who supplied information to the hackers were potentially vulnerable. 'We looked into this quickly and learned that it can only occur if a user knowingly provides their credentials,' Ms. Boralv said. 'Nevertheless, we have made some modifications to Gmail to help prevent these kinds of issues.'"

2 of 209 comments (clear)

  1. Re:While they're there... by timster · · Score: 5, Informative

    If you make your bookmark https://mail.google.com/ it will present both the login and the rest of the site via HTTPS.

    --
    I have seen the future, and it is inconvenient.
  2. Re:A very timely fix unlike M$ by generic-man · · Score: 4, Informative

    When Hotmail was hacked 6 years ago, Microsoft sealed off the problem within a day. Google is incredibly slow.

    --
    For more information, click here.