FlyerTalk Forums
Page 2 of 2
1
2
Show 40 post(s) from this thread on one page

FlyerTalk Forums (https://www.flyertalk.com/forum/index.php)
-   Travel Technology (https://www.flyertalk.com/forum/travel-technology-169/)
-   -   compromised GMail account (https://www.flyertalk.com/forum/travel-technology/942432-compromised-gmail-account.html)

nmenaker Apr 22, 2009 10:49 am
on the bottom of the gmail page, you can see the points of access, IP addresses, and find out if a different range to her normal accesss points have accessed it. I THINK there is a log for this info as well.

BobbySteel Apr 22, 2009 5:33 pm
Originally Posted by nmenaker (Post 11625242)
on the bottom of the gmail page, you can see the points of access, IP addresses, and find out if a different range to her normal accesss points have accessed it. I THINK there is a log for this info as well.
^^ See my above comments :)

nmenaker Apr 22, 2009 6:12 pm
sorry, I skimmed your post BS, but didn't read it entirely. Indeed, BS says similar above. I think though there is a log you can query in labs, but not on the standard interface.

DallasBill Apr 27, 2009 10:44 am
It very well could have been this:

Gmail accounts hacked via unpatched hole
April 23, 2009

Exploits allowing hackers to break into Gmail accounts are likely to occur, if they're not already circulating, after security researchers released details of a hole that Google has reportedly declined to patch.

There are steps you can take to reduce the risk of using a webmail account, but it appears that the usual tricks won't solve the Gmail problem until Google fixes the software.

The weakness that researchers say afflicts Gmail, a free e-mail service hosted by Google, belongs to a class of attacks known as cross-site request forgery (CSRF, pronounced "sea surf").

Besides Gmail, CSRF holes affecting YouTube, Netflix, and NYTimes.com have also been found and repaired in the past. CSRF attacks use security flaws in cookies, password requests, and other interactive Web components to intercept communications between your browser and a Web site's server.

The first report of the Gmail problem within security circles was written by Vicente Aguilera Díaz of Internet Security Auditors (ISA) on July 30, 2007. The next day, ISA issued an alert and included a proof of concept illustrating how the exploit could be used to change a Gmail account password.

More here:
Link details.

BobbySteel Apr 27, 2009 12:44 pm
That's a pretty unlikely hack source though. You'd have to have pretty bad luck and an identical password to get hacked this way.


All times are GMT -6. The time now is 11:31 am.
Page 2 of 2
1
2
Show 40 post(s) from this thread on one page


This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2026 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.