telecoms
Applications
Broadband
Digital Content
Fabric
Mobile
pcs
Chips
Graphics
Hardware
Internet
Notebooks
Peripherals
Servers
Software
Unusual
outsourcing
BPO
Outsourcing
CRM
business
Financials
Legal
Logistics
Resellers
Retail
Security
NewsNow
RSS Feed
Friday, 21 November 2008 07:00 UK Bengaluru, India


 

Gmail becomes spam bot

Insert warning here

By Mike Magee @ Monday, May 12, 2008 8:56 AM

 
 

Security company Insert has issued a warning about a serious flaw in Google’s Gmail, which can turn the free email service into an effective spamming tool.

Insert has worked out a way that a hacker could take advantage of the trust that exists between mail service providers and the way that Google forwards messages.

According to the company spammer could use Google’s SMTP service to send thousands of bulk e-mails.
This would ignore Google's 500-address e-mail limit and any identity fraud protection.

The attack is based on the concept that e-mail providers are using white and blacklists to root out spammers. Since most white lists name Gmail, any messages are given free access to addresses and ignore spam filtering.

The hacker does not need any special internet access privileges other than being able to connect to SMTP (TCP port 25) and HTTP (TCP port 80) servers.

So far Google has not commented on the flaw. X

 
Copyright 2008 - ITExaminer.com  Terms Of Use  Privacy Statement  Contact Us