Google ввел новую функцию по борьбе с интернет-мошенниками

Корпорация Google сегодня запустила новую функцию для своего поискового сервиса, которая позволяет активизировать борьбу с мошенническими сайтами. Функция будет полезна как обычным пользователям, так и системным администраторам, поскольку первые видят предупреждение об опасности, а вторые —...

Gmail JSON Hijacking Proof Of Concept

Gmail Thief by 80vul.com @import url"http://www.google.com/igrestore"; function showMailgt var w = document.styleSheets0.imports1.cssText; var re = new RegExp"accountidx3d.+?""; var reRes = re.execw; if reRes document.getElementById"whom".innerText = reRes1; var e =...

This Week In Security: Stuxnet Redux, Gmail Security and a Monster Patch Tuesday

The Stuxnet buzz continued this week, Adobe took a few steps toward better security and Microsoft announced plans for its largest Patch Tuesday ever. But it wasn’t just Microsoft, Adobe and everyone’s favorite worm grabbing headlines. Read on for the full week in review. Not going away anytime...

Google Unveils Gmail Security Checklist

In the face of continued attacks targeting its hugely popular Gmail service, Google has put together a checklist to help Gmail users better secure their accounts by looking at the settings in their inboxes, their browsers and their PCs. The security guide doesn’t automate any of these tasks for...

New Password Not Enough to Secure Hacked E-mail Account

HED: New Passwords Not Enough to Secure Hacked E-mail Account DEK: Google’s Advice to Owners of Compromised Accounts Woefully Inadequate, Says Web Security Expert BY CALEB SIMA, CEO, Armorize Technologies Threatpost reported recently on a wave of warnings about Gmail account compromises linked to...

Google Warning Gmail users on China Spying Attempts

Google is using automated warnings to alert users of its GMAIL messaging service about wide spread attempts to access personal mail accounts from Internet addresses in China. The warnings may indicate wholesale spying by the Chinese government a year after the Google Aurora attacks or simply rand...

Google's New Priority Inbox Hits a Snag

The buzz this morning isn’t Google’s Buzz, but its new Priority Inbox feature for the company’s Web based Gmail messaging service. The new feature allows heavy e-mail users to filter out and prioritize important messages. But the search giant has already hit a snag in releasing it to the public...

Видео и голосовой чат Gmail работают теперь и в Linux

Google сделал наконец так, что бы важные возможности Gmail - видео и голосовой чат - работали под Linux. Ubuntu и другие основанные на Debian дистрибутивы Linux могут работать с этим уже сейчас, поддержка RPM появиться в самом ближайшем времени. Для тестирования вы можете попробовать загрузить...

Gmail Checker Plus Chrome Extension Cross Site Scripting / Cross Site Request Forgery

Gmail Checker plus Chrome extension XSS/CSRF II extension: https://chrome.google.com/extensions/detail/gffjhibehnempbkeheiccaincokdjbfe advisore:http://lostmon.blogspot.com/2010/06/gmail-checker-plus-chrome-extension.html Exploit available:yes vendor notify: NO So in this case "Google Mail Checke...

Gmail Checker Plus Chrome Extension Cross Site Scripting

Gmail Checker plus Chrome extension XSS extension: https://chrome.google.com/extensions/detail/mihcahmgecmbnbcchbopgniflfhgnkff advisore:http://lostmon.blogspot.com/2010/06/gmail-checker-plus-chrome-extension-xss.html Exploit available:yes So in this case "Google Mail Checker Plus" version 1.1.7...

Google Investigates Hijacked Email Accounts

Google is investigating a growing number of reports that hackers are breaking into legitimate Gmail accounts and then using them to send spam messages. The problem started about a week ago but seems to have escalated over the past few days. Read the full article. IDG News Service...

Google to Issue GMail Suspicious Activity Warnings

Google has added a nifty new security feature to warn GMail users when there are suspicious log-ins to their e-mail accounts. The feature, now being rolled into Firefox and Internet Explorer, will flag GMail log-ins from multiple locations and flash the following warning to an affected user:...

GMail Goes "https-only" By Default

A day after confirming a major security breach by Chinese hackers looking for GMail account information, Google has turned on default “https:” access for its popular Web mail service. Google had previously added the option for GMail users to “always use https” back in July 2008 but it was turned...

Simple html injection leads to Gmail 0day-vulnerability warning-the black bar safety net

/Very good article Oh/ A Google. com service certification analysis xssand authentication are inseparable, the authentication way may decide toxssthe use of the way, the last analysis feel too sloppy, even proven wrong, this time to a detailed analysis under the gmail landing way, for the future ...

Google Moves to Block CSRF Attacks

The Register’s Dan Goodin has news about a belated but significant move by Google to protect its GMail and other services from CSRF cross site request forgery attacks. In recent days, Google’s login pages began setting a cookie with a unique token on each user’s browser. That same value is also...

Quiksoft EasyMail 6 (AddAttachment) Remote Buffer Overflow Exploit

No description provided by source. html head !-- -- Quiksoft EasyMail 6 AddAttachment Remote Buffer Overflow Exploit -- -- Its old and the latest version doesn't support this method. -- I was bored and a similar post sparked my interest. -- -- Advisory: http://www.bmgsec.com.au/advisory/48/ -- --...

Quiksoft EasyMail 6 - AddAttachment Remote Buffer Overflow

Quiksoft EasyMail 6 - AddAttachment Remote Buffer Overflow Quiksoft EasyMail 6 AddAttachment Remote Buffer Overflow Exploit function strrepeat input, multiplier return new Arraymultiplier+1.joininput; //windows/exec CMD: calc Size: 144 bytes Encoder: x86/shikataganai ExitFunc: SEH shellcode =...

WarFTPd 1.82.00-RC12 - 'LIST' Format String Denial of Service

Vulnerability : War FTP Daemon Format String DoS LIST command Detected by : corelanc0d3r corelanc0d3ratgmaildotcom Type : remote DoS OS : Windows Product : Jgaa's War FTP Daemon Versions affected : 1.82 RC 12 Download link : http://www.warftp.org/?menu=344...

GMAIL-LITE Arbitrary File Upload 0.10 <=

============================================================================== GMAIL-LITE Arbitrary File Upload 0.10 = ============================================================================== Discovered by br0, YGN Ethical Hacker Group, Myanmar http://yehg.net believe in full disclosure URL...

Gmail UserID Detection (deprecated)

Binary data 7016.pasl...