Googlebombing is a technique to get a website ranked #1 on a Google query for a random term. For instance “liar” and “failure” were some of the most popular along with “talentless hack”. Typing in failure would take you to the president Bush’s biography, and liar would do a similar thing for Tony [...]
Print PostMicrosoft’s Live Image Search has always been very sleek with its use of JavaScript. Apparently Google thought so as well, as they’ve started using similar JavaScript themselves. The image search has indeed been updated to mimic some of Microsoft’s effects. The overall change gives a very clean look to how the images [...]
Print PostPreviously I blogged about a flaw in Gmail’s contact list that could allow an attacker to steal your contact list. However today’s Google flaw seems to be much worse. The following is a short list of some of the things you can do upon a successful attack.
Get in to Google Docs and Spreadsheets [...]
Earlier I reported that Google had a flaw in which it stores contact details in a JavaScript file on their server. A website could in return declare the function “google”, and put all your contacts and their details into an array. From there it could have been parsed and sent to the malicious [...]
Print PostUsing a form of cross scripting, it becomes easy to steal a GMail user’s contact list if they visit a certain type of website. The only condition is you have to be logged in to GMail at the time of the attack. GMail is setup to store your contact list in javascript files, [...]
Print Post