Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Google has just patched a critical Gmail vulnerability, allowing hackers to send fake emails
Security researcher Allison Husain is the one who discovered a Gmail security vulnerability that Google has just fixed. According to Husain, the cause of the problem lies in the lack of a verification mechanism when configuring email routes.
"Both Gmail and G Suite's strict DMARC / SPF policy can be circumvented by using G Suite mail routing rules to forward and grant authentication to spoofed emails , " says Husain. shall.
Husain discovered the problem in early 2020 and reported it to Google on 3/4/2020. Google took over the issue on April 16, 2020 but later determined that the vulnerability was prioritized only at level 2, severity level 2, and then marked it as a duplicate vulnerability. .
Google has just patched a critical Gmail vulnerability, allowing hackers to send fake emails Picture 1 Google delayed patching the vulnerability by 137 days and would only patch it when it went public on the internet When Husain informed Google that he would make the vulnerability public on August 17, Google said a patch was under development and expected to roll out on September 17. According to Google regulations, the vulnerability will be patched within 90 days from when it is reported to Google and after this deadline a developer can publicize the vulnerability they discover. In the case of Husain, the Gmail vulnerability has not been patched even though it was reported 137 days ago.
Therefore, Husain decided to publicize the vulnerability on August 19 to promote Google to quickly take measures to protect users. Husain's decisive action forced Google to immediately take corrective measures.
Within 7 hours of Husain published details of the vulnerability, Google has released a patch.
David PacYou should read it
- How to backup Gmail data?
- In a few weeks Gmail will change to new clothes, will it get new users?
- 11 great extensions for Gmail on Firefox
- Master the new mobile Gmail application with these 10 useful tips
- Google is about to change the Gmail interface?
- Experience Google 's new Gmail interface quickly
- Instructions for deleting Gmail and Google accounts
- Replace the new 'shirt' for Gmail
- Gmail has just updated an extremely useful new entry: Contacts tab
- Guide to managing jobs with Google Calendar in Gmail
- Google launched a feature that allows sending money via Gmail
- Google uses HTTPS protocol for Gmail
May be interested
Find bug in Emotet malware, prevent it from spreading for 6 months
Microsoft has just patched a critical security hole in Windows 10 discovered in 2018
Google Chrome has a serious zero-day error, and hackers can execute malicious code at its fullest
Wsreset tool of Windows 10 Store was used by hackers to bypass anti-virus software
The Joker malware once again bypassed Google's security, spreading strongly on the Play Store
The 'gang' behind the Sodinokibi malware began auctioning celebrity data on the dark web
Attack the network
GitLab patches critical vulnerability that allows hackers to take control of accounts- How to Send Emails Using Gmail
- Discover useful Gmail features
- Mozilla patches a vulnerability in Firefox that helps hackers gain admin rights of Windows
- Instructions on how to send mail with Gmail
- Microsoft has just patched a critical security hole in Windows 10 discovered in 2018
GitLab patches critical vulnerability that allows hackers to take control of accounts
How to Send Emails Using Gmail
Discover useful Gmail features
Mozilla patches a vulnerability in Firefox that helps hackers gain admin rights of Windows
Instructions on how to send mail with Gmail
Microsoft has just patched a critical security hole in Windows 10 discovered in 2018