Security Hole Fixed in Google Reader

By BetaNews Staff
Published 19 years ago

Google late Wednesday fixed a security flaw in its Google Reader RSS feed aggregation tool, which opened the door for a cross-site scripting attack. The vulnerability was disclosed in detail on Tuesday, and enabled an attacker to steal personal data from Google users.

"What are the implications of this attack for Google? Well, for starters, I can put a phishing site on Google. “Sign up for Google World Beta.” I can steal cookies to log in as the user in question, I can use the credentials of the user to screen scrape any of the content off of the www cname, including changing options like adding my RSS feed to your page, or deleting them," read a post on the ha.ckers.org blog.

Tags:

3 Comments

3 Responses to Security Hole Fixed in Google Reader

Got News? Contact Us

Recent Headlines

Google adds new AI features to Search and Discover to help users find fresh content

Privacy-focused email provider Fastmail launches desktop app for Windows, macOS, and Linux

Who’s paying the price of cybercrime?

RIP Windows 10 -- Winux 'W10EOL' is the Windows 11 clone that runs on Linux and makes your old PC feel new again

Infrastructure is having a moment -- why it’s finally getting the spotlight [Q&A]

Apple doubles its top bug bounty payout to $2 million

Apple, predictably, thinks Windows 10 users should move to macOS – here’s why

Why Trust Us

At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

Security Hole Fixed in Google Reader

3 Responses to Security Hole Fixed in Google Reader

Recent Headlines

Google adds new AI features to Search and Discover to help users find fresh content

Privacy-focused email provider Fastmail launches desktop app for Windows, macOS, and Linux

Who’s paying the price of cybercrime?

RIP Windows 10 -- Winux 'W10EOL' is the Windows 11 clone that runs on Linux and makes your old PC feel new again

Infrastructure is having a moment -- why it’s finally getting the spotlight [Q&A]

Apple doubles its top bug bounty payout to $2 million

Apple, predictably, thinks Windows 10 users should move to macOS – here’s why

Most Commented Stories

With Windows 10 support ending soon, Zorin OS 18 Beta arrives as the ultimate alternative to Windows 11

Windows 11 installation no longer lets you skip creating a Microsoft Account

Nearly a third of US and UK consumers plan to switch internet providers, survey finds

Apple, predictably, thinks Windows 10 users should move to macOS – here’s why

CCleaner 7 debuts with redesigned interface and smarter cleanup tools

AdGuard Ad Blocker lands in the Microsoft Store

Microsoft starts the 30-day death clock for Windows 10

Microsoft is giving Windows 11 users an internet speed test tool

Why Trust Us