GMail Vulnerable To Contact List Hijacking
There seems to be a newly discovered security flaw in Gmail, Google's online web service. For the hack to work, the user must already be logged in to Gmail and must visit a site which runs the malicious file. The hack exploits a vulnerability in cross scripting, which is a common weak point for many types of attacks (e.g. phishing scams). At first, many believe that only Firefox was vulnerable to the attack; however, there is some debate as to if Internet Explorer and Opera are vulnerable as well.