Google Says Reports of Gmail Flaw Unfounded
Google says GeekCondition.com's claims about a Gmail vulnerability are incorrect. The issue is just an example of a successful phishing attack targeting Web domain owners, Google says.Google officials have challenged the assertion that a Google Gmail security flaw was at the center of an issue described on the GeekCondition.com blog. A posting on GeekCondition.com Nov. 23 warned of a flaw allowing attackers to force Gmail users to create a malicious message filter without their knowledge. As a result, the post said, attackers could hijack messages sent to a victim's Gmail account by redirecting messages into the trash and forwarding copies to the attacker.
Google, however, explained that the source of the problem was not a flaw in Gmail, but a phishing scheme in which attackers sought to lure Web domain owners to rogue sites so their information could be stolen.