Google Fixes Gmail Bug Within Hours After Ignored Researcher Publishes Email Spoofing Code – CPO Magazine

Google fixed a major security bug affecting Gmail and G Suite email servers within hours after ignoring a researcher who found the bug for 137 days. The Gmail bug allowed an attacker to send spoofed emails by impersonating any Gmail or G Suite customer using Google’s backend servers. The security researcher, Allision Husain, reported the email spoofing bug in April and Google promised to fix it shortly after. However, the Alphabet-owned company never got around to fixing it, until Husain publish…

Click here to view the original article.