Will Google Gadget Hosting Make Phishers Easy?

    The gmodules.com domain used to host Google gadgets can be used by phishers, said security researcher and chief executive of SecTheory Robert Hansen.

    Hansen said gmodules.com could be used by phishers to bypass anti-phishing filters. An attacker could create a phishing site on the gmodules.com domain, and then send a link to it to the victim. Since the domain gmodules.com, being owned by Google, is trustworthy, anti-phishing filters pass it and the victim gets to the "left" site.

    Robert Hansen, a frequent critic of Google, reported the issue to the company's security team, but they said there was no cause for concern. Unhappy with the conversation, Hansen says that “if they leave things as they are, he guarantees that they will be used in [phishing] attacks.”

    Also popular now: