Experts claim that Google Gadgets can be misused
August 18th, 2007 Leave a comment Visited 390 times, 2 so far today
Experts claim that Google Gadgets can be misused
Security researcher Robert Hansen has claimed that phishers can misuse the Google Gadget service provided by the search engine giant.
He said that the domain used to host these gadgets can be used to get around antiphishing filters.
Hackers can create a phishing site which can be hosted on this domain (gmodules.com) and it could be used in phishing mails.
This would mean that the user would get a weblink hosted on Google servers which would of course be cleared by any kind of anti-phishing service.
Hansen said that he reported his findings to the Google developers but was not satisfied with the response.
Alex Stamos, a researcher with Isec Partners had this to say on this report: “They have to have this throw-away domain to jail modules written by other people. It’s not an unreasonable model, and it’s the best they can do to host content created by malicious parties while not exposing themselves to attack.”
- Comment help
- Get Livefyre
Today's Popular Posts
- 50 Cent launches Thisis50.com social network for fans (143 views)
- Blurb enables you to sell hard copies of your Facebook photos in book format! (37 views)
- AT&T Cruisecast car-based satellite TV service launched (33 views)
- Square mobile apps now feature support for Loyalty coupons and discount cards (31 views)
- NTT DoCoMo: Still interested in launching Apple iPhone (31 views)
- Samsung is now the world’s largest smartphone maker (29 views)
- Microsoft Zune Music Pass launches in Australia (29 views)
- Google close to signing a deal with Universal for their Google Music store! (28 views)
- Huawei Sonic and Ideos X3 have arrived in India (27 views)
- Google allows you to opt out of their wireless network data collection system (27 views)
