{"id":733,"date":"2007-12-25T23:20:53","date_gmt":"2007-12-25T21:20:53","guid":{"rendered":"http:\/\/planetozh.com\/blog\/2007\/12\/gmail-vulnerability-has-your-account-been-compromised\/"},"modified":"2007-12-25T23:20:53","modified_gmt":"2007-12-25T21:20:53","slug":"gmail-vulnerability-has-your-account-been-compromised","status":"publish","type":"post","link":"https:\/\/planetozh.com\/blog\/2007\/12\/gmail-vulnerability-has-your-account-been-compromised\/","title":{"rendered":"Gmail Vulnerability: Has Your Account Been Compromised?"},"content":{"rendered":"<p>This is a truly scary story : David Airey <a href=\"http:\/\/www.davidairey.co.uk\/google-gmail-security-hijack\/\">got his domain stolen<\/a> because of a GMail vulnerability.<\/p>\n<p>Short story: it was (seems it&#39;s fixed) possible to create filters on Gmail just by visiting a link or, say, loading a hidden frame on a malicious website. Like, create a filter to forward to evilguy@evilhost.com any email containing the word &quot;password&quot; and you&#39;re pretty much stealing everything from everyone. Long story: <a href=\"http:\/\/www.davidairey.co.uk\/google-gmail-security-hijack\/\">David&#39;s experience<\/a>, or just the technical <a href=\"http:\/\/www.gnucitizen.org\/blog\/google-gmail-e-mail-hijack-technique\/\">proof of concept and explanations<\/a>.<\/p>\n<p><strong>Number one item on your to do list<\/strong>: check your Gmail filters <strong>right now<\/strong> and see if there is any suspicious forward you can&#39;t remember setting up.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This is a truly scary story : David Airey got his domain stolen because of a GMail vulnerability. Short story: it was (seems it&#39;s fixed) possible to create filters on Gmail just by visiting a link or, say, loading a hidden frame on a malicious website. Like, create a filter to forward to evilguy@evilhost.com any [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21],"tags":[172,60,196,151,61],"class_list":["post-733","post","type-post","status-publish","format-standard","hentry","category-published","tag-email","tag-gmail","tag-hax0rz","tag-security","tag-sux0rz"],"_links":{"self":[{"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/posts\/733","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/comments?post=733"}],"version-history":[{"count":0,"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/posts\/733\/revisions"}],"wp:attachment":[{"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/media?parent=733"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/categories?post=733"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/planetozh.com\/blog\/wp-json\/wp\/v2\/tags?post=733"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}