Get all your news in one place.

100’s of premium titles.
One app.

Get all your news in one place.

100’s of premium titles. One news app.

The Guardian - UK

Jack Schofield

Google's Gmail insecure, and other Google security holes

At GNUcitizen, Petko D Petkov has just blown a hole in Google's Gmail by showing "how someone can install a persistent backdoor within your GMail account and snoop onto all your conversations. I repeat, it is persistent. It is very critical and very unlikely that you will detect it unless you are an uber user."

xMoDx has responded with a useful roundup of recent Google security holes which include the Google Search Appliance, Blogspot, Picasa and Google's Urchin Analytics service.

Google also "won" MOSEB -- the Month of Search Engine Bugs -- with Google dorks strikes back, along with Microsoft's MSN Shopping.

The field is not without its funny side. One hacker demonstrated a hole with an example that "will make Gmail forward all new received emails to another email account, no user interaction required, well you just need to open a website while still logged to Gmail." Later, he added:

Update: Google fixed this issue, I'd like to ask the people that looked at the second poc to disable forwarding if you have not done so, I'm still getting ton of email.

The point is that if a hacker sets a Gmail filter with mail forwarding, this continues to work forever, even after the hole is fixed.

Sign up to read this article

Read news from 100’s of titles, curated specifically for you.

Already a member? Sign in here

Top stories on inkl right now

Japan seizes Chinese fishing boat inside its economic waters amid rift with Beijing

Japan seizes Chinese fishing boat inside its economic waters amid rift with Beijing

Japan’s fisheries agency said the vessel failed to comply with an order to stop. The incident comes weeks after a row between China and Japan over Taiwan

The Guardian - AU

Who will be Bangladesh’s next PM? Tarique Rahman, once-exiled scion, set to take charge

Who will be Bangladesh’s next PM? Tarique Rahman, once-exiled scion, set to take charge

Bangladesh Nationalist Party (BNP) claims victory in the nation's first parliamentary election since the 2024 uprising, though final results are pending. The election follows a student-led revolt that ousted former Prime Minister Sheikh Hasina. BNP leader Tarique Rahman, son of former President Ziaur Rahman and former Prime Minister Khaleda Zia,…

The Times of India

Prosecutors move to dismiss charges against men accused of hitting ICE officer with broom and shovel

Prosecutors move to dismiss charges against men accused of hitting ICE officer with broom and shovel

Federal prosecutors in Minneapolis have moved to drop felony assault charges against two Venezuelan men, including one shot in the leg by a immigration officer, after new evidence emerged undercutting the government’s version of events

The Independent UK

Affordable housing residents near Portland ICE building to ask judge to limit feds' use of tear gas

Affordable housing residents near Portland ICE building to ask judge to limit feds' use of tear gas

Residents of an affordable housing complex across from the U.S. Immigration and Customs Enforcement building in Portland, Oregon, are set to testify Friday in a lawsuit seeking to limit federal officers' use of tear gas during protests at the building

The Independent UK

One subscription that gives you access to news from hundreds of sites

Already a member? Sign in here

BNP set to return to power after 20 years; Jamaat’s bid falls short — Bangladesh election highlights

BNP set to return to power after 20 years; Jamaat’s bid falls short — Bangladesh election highlights

Bangladesh's Nationalist Party appears poised for a landslide victory in the recent parliamentary elections, with preliminary results showing a commanding lead. Party chief Tarique Rahman is expected to become the next Prime Minister. However, the main opposition, the Awami League, has denounced the polls as a 'well-planned farce' and alleged…

The Times of India

Chase Elliott wins Duel #2 in caution-free race

Chase Elliott wins Duel #2 in caution-free race

It was a much calmer finish to the end of the second Duel qualifying race, despite a full cycle of pit stops

Related Stories

Top stories on inkl right now

Japan seizes Chinese fishing boat inside its economic waters amid rift with Beijing

Japan seizes Chinese fishing boat inside its economic waters amid rift with Beijing

Japan’s fisheries agency said the vessel failed to comply with an order to stop. The incident comes weeks after a row between China and Japan over Taiwan

The Guardian - AU

Who will be Bangladesh’s next PM? Tarique Rahman, once-exiled scion, set to take charge

Who will be Bangladesh’s next PM? Tarique Rahman, once-exiled scion, set to take charge

Bangladesh Nationalist Party (BNP) claims victory in the nation's first parliamentary election since the 2024 uprising, though final results are pending. The election follows a student-led revolt that ousted former Prime Minister Sheikh Hasina. BNP leader Tarique Rahman, son of former President Ziaur Rahman and former Prime Minister Khaleda Zia,…

The Times of India

Prosecutors move to dismiss charges against men accused of hitting ICE officer with broom and shovel

Prosecutors move to dismiss charges against men accused of hitting ICE officer with broom and shovel

Federal prosecutors in Minneapolis have moved to drop felony assault charges against two Venezuelan men, including one shot in the leg by a immigration officer, after new evidence emerged undercutting the government’s version of events

The Independent UK

Affordable housing residents near Portland ICE building to ask judge to limit feds' use of tear gas

Affordable housing residents near Portland ICE building to ask judge to limit feds' use of tear gas

Residents of an affordable housing complex across from the U.S. Immigration and Customs Enforcement building in Portland, Oregon, are set to testify Friday in a lawsuit seeking to limit federal officers' use of tear gas during protests at the building

The Independent UK

One subscription that gives you access to news from hundreds of sites

Already a member? Sign in here

BNP set to return to power after 20 years; Jamaat’s bid falls short — Bangladesh election highlights

BNP set to return to power after 20 years; Jamaat’s bid falls short — Bangladesh election highlights

Bangladesh's Nationalist Party appears poised for a landslide victory in the recent parliamentary elections, with preliminary results showing a commanding lead. Party chief Tarique Rahman is expected to become the next Prime Minister. However, the main opposition, the Awami League, has denounced the polls as a 'well-planned farce' and alleged…

The Times of India

Chase Elliott wins Duel #2 in caution-free race

Chase Elliott wins Duel #2 in caution-free race

It was a much calmer finish to the end of the second Duel qualifying race, despite a full cycle of pit stops

Our Picks

In My Tiny Kitchen, Every Inch Counts – Yet Drew Barrymore’s Ingenious Blender Earned a Spot on My Counter (And Replaced 3 Bulky Appliances)

The new 'Kitchen System' is a personal blender and food processor all in one, making it a must-have for small spaces (starting with mine)

Homes & Gardens

Former Texas Roadhouse worker calls out the outlet for ‘scooping out’ a bug from their cinnamon butter, but people noticed something even worse

Everyone has seen the viral videos of secret menu hacks or behind-the-scenes kitchen tours. But one former Texas Roadhouse server’s “throwback” TikTok of a bug in cinnamon butter is a literal nightmare. People with a fear of bugs, you might want to sit this one out.

From YouTuber to NASCAR driver: Cleetus McFarland expands his racing resume at Daytona

Garrett Mitchell is better known as “Cleetus McFarland” to his millions of followers gained over the years as a racing influencer

The Independent UK

Woman orders wedding dress from Dior. Then she sees the box it came in. People are alarmed at the reveal: ‘I thought that was a fridge’

Forget butterflies and happy tears. This Dior bride’s big moment arrived looking less like couture and more like a Home Depot delivery. In a now-viral TikTok, handymen lug a massive wooden crate into her house–except it’s the kind you’d expect to hold a fridge, not a frock.

8 Signs Your Healthy Southern Diet is Actually Causing Inflammation

Traditional Southern flavors often rely on fresh produce and lean proteins, but common preparation methods can unintentionally trigger inflammation. While many believe they are following a wholesome regional diet, specific dietary habits might be working against health goals. Identifying these subtle shifts in nutrition can help restore balance and improve…

Budget and the Bees

The science behind the trend for showering in the dark before bed

The latest wellness trend and “sleep hack” involves switching off the bathroom light before stepping into the shower. In the dimness, the water feels louder, the day’s visual clutter fades and the hope is that sleep will come more easily. This practice, often called “dark showering”, has spread on social…

The Conversation

Fourteen days free

Download the app

One app. One membership.
100+ trusted global sources.

Download on the AppStore

Get it on Google Play