In the past weeks, the security Bloggosphere has been abuzz with stories of folks who got their web sites hijacked (and held for ransom) by getting their web-based email accounts altered via the wonders of filters which can redirect specific emails to an attacker's email account.
Personally, I would like to see more being done by the web-based email providers to validate users' identities and protect the ever-increasing value of information being stored in email accounts.
Gmail Security Flaw Proof of Concept
No comments:
Post a Comment