Hacking Google To Help It Improve Security

Last Friday, Philipp Lenssen wrote a fascinating post describing how his associate Tony Ruscoe was able to access Philipp’s Google account: “It’s your worst nightmare – someone reads parts of your Google emails, views your docs, modifies your spreadsheets, checks out your reading habits on the Google personalized homepage or Google Reader, and goes through […]

Chat with SearchBot

Last Friday, Philipp Lenssen wrote a fascinating post describing how his associate Tony Ruscoe was able to access Philipp’s Google account: “It’s your worst nightmare – someone reads parts of your Google emails, views your docs, modifies your spreadsheets, checks out your reading habits on the Google personalized homepage or Google Reader, and goes through your search history.”

Tony’s a white-hat hacker, so he reported his exploit to Google’s security team, and they’ve now closed the hole that allowed this to happen. Today, Tony explains what he did and how he thinks Google fixed the problem in Details of Google’s Latest Security Hole, writing “In doing so, I hope to educate other developers about the potential flaws that can occur in growingly complex web applications.”


Contributing authors are invited to create content for Search Engine Land and are chosen for their expertise and contribution to the search community. Our contributors work under the oversight of the editorial staff and contributions are checked for quality and relevance to our readers. The opinions they express are their own.


About the author

Chris Sherman
Contributor
Chris Sherman (@CJSherman) is a Founding editor of Search Engine Land and is now retired.

Get the newsletter search marketers rely on.