Search Perform an advanced search query SOFTPEDIA
 
SOFTPEDIA
Updated one minute ago
HomeSubmit a program for being reviewedAdvertise on our websiteGet help on surfing our websitesSend us your feedbackGet information about our XML/RSS backend and how to use itBrowse the news archiveVisit our discussion forumVizitati forumul in limba romana



KLIP
  1. HOME
  2. SCIENCE
  3. TECHNOLOGY
  4. WEBMASTER
  5. SECURITY
  6. MICROSOFT
  7. LINUX
  8. APPLE
  9. GAMES
  10. TELECOMS
  11. REVIEWS
  12. LIFE & STYLE
  13. EDITORIALS
  14. INTERVIEWS
  15. RSS
Welcome!
Hello, Guest

Login if you have a Softpedia.com account.

Otherwise, register for one.

SECURITY

Security Flaw Can Easily Turn Gmail into Your Worst Nightmare

- Vulnerability can make Gmail a genuine spamming bot

By: Bogdan Popa, Security and Search Engines Editor

Gmail, Google's very popular email technology, which is for many users their main email service, can easily turn into your worst nightmare as a security glitch could allow
an attacker to use the service as the perfect spamming bot. According to security research team INSERT, the security glitch "is related to the risk of abusing the email forwarding option in Gmail accounts." In case an attacker manages to take advantage of the flaw, he could easily send a very large number of messages, obviously with spamming purposes.

It's interesting to note that the security researchers managed to send unsolicited messages to more than 4,000 email addresses in no less than 6 hours and "no measures took place that would have prevented us from keeping sending more messages." And obviously, more Gmail accounts exploited means more spam messages sent to inboxes from all over the world. "By deploying this attack with 100 Gmail accounts simultaneously, the message rate would exceed 1,000 messages per minute," the researchers explain.

Gmail is usually a safe and trusted email service and email technologies from all over the world included it on the whitelist, allowing messages sent by Gmail accounts to reach their inboxes. Imagine that such a security glitch could prove to be extremely dangerous for them, unless Gmail is blacklisted.

"It is possible to assemble an attack that would have results similar to those of a botnet based spam by compromising a relatively small number of Gmail accounts, but without the need for thousands of zombie computers. Nevertheless, an attacker could also reach levels similar to those of a small botnet by exploiting only one Gmail account given enough time," the INSERT researchers explain.

At this time, we're still waiting for an official comment from Google's representatives but, in case you want to get more info on this topic, read the INSERT advisory available here.

MORE RELATED ARTICLES: YouTube Glitch Lets Users Access Others' Gmails Gmail, Yahoo Messenger, Bank Account - All Sharing the Same Password Gmail and Yahoo Mail - Spammers' Favorite Services Gmail Introduces New Function to Send Emails to the Past Gmail to Provide Language Translation
 
Comments | Link here | Subscribe
Print | Send to friend
Today's News | Yesterday's News

Search:

TAGS: gmail security spam email google

12th May 2008, 08:45 GMT | Copyright (c) 2008 Softpedia | Contact:
Read by 327 user(s) | Rating: | 1 vote(s) so far | Cast your vote:
Security Flaw Can Easily Turn Gmail into Your Worst Nightmare - USER OPINIONS




We are sorry, there are no opinions available for this article.


SHARE YOUR OPINION ABOUT Security Flaw Can Easily Turn Gmail into Your Worst Nightmare

Since you are not logged on, your comments will have to be approved before being displayed.
Click here to login, or register.
Your Name:
Your Email:
Type in the result:
Your Opinion:
 


DO YOU WANT TO CONTACT US?  

If you have some comments or you want to send us some information you can send us an email directly to .
You can use the form below for the same purpose.
Your full name: (at least 3 characters)
Your email address: (at least 5 characters)
Message subject: (at least 5 characters)
Message text:
(at least 10 characters)
Type in the result:
 
 
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and Softpedia™ logo are registered trademarks of SoftNews NET SRL.
Copyright Information | Privacy Policy | Terms of Use | Contact Softpedia | Update your software | Archive