dave seah: better living through new media Filter Navigation Temporary Redirect Page Personal Articles Productivity Articles Compact Calendar The Printable CEO Series The Printable CEO Series Back to Home Page Admin:Login

GMail Contact List Exploit :(

POSTED 02/18/2006 UNDER Suckage

Someone I had chatted with via email a few months ago apparently got some spam about "online bingo", clicked on the "unsubscribe" link, and it then exposed their entire gmail address contact list.

According to this post, through some Javascript trickery the entire contact list can be harvested by a spammer if you click on a special link.

I'm not sure if this has yet been patched or if this even was the method of attack (it's apparently pretty old, and Google has a reputation of fixing stuff quickly)...but in general don't be clicking any strange links on strange emails. Please.

Thank you for printing this article! Please note that all material on this website is copyrighted by either David Seah or individual comment contributors. To request permission for republication and distribution, please contact David Seah (http://davidseah.com/contact).