[A2k] Google Antiphishing Site Exposed Private User Data
Jeff Williams
jwkckid1@ix.netcom.com
Thu Jan 25 07:42:00 2007
All,
Seems Google messed up again. No suprise I suppose...
See:
http://www.informationweek.com/news/showArticle.jhtml?articleID=196902585&subSection=Breaking+News
""Google has removed a few user names and passwords posted
inadvertently to a phishing blacklist it compiles and makes publicly
available on the Web. This information was submitted to
Google by Firefox users with the browser's internal antiphishing
toolbar. This feature, developed in cooperation with Google, enables
users to report potential phishing sites to Google's blacklist database.
Google has reportedly implemented a new mechanism detecting login
data in submitted URLs to prevent sensitive information from getting
posted to the list." The article notes that news of this minor lapse may
obscure the ongoing problem of sensitive data exposed on the Web
and findable via Google and other search services."'
--
Jeffrey A. Williams
Spokesman for INEGroup LLA. - (Over 134k members/stakeholders strong!)
"Obediance of the law is the greatest freedom" -
Abraham Lincoln
"Credit should go with the performance of duty and not with what is
very often the accident of glory" - Theodore Roosevelt
"If the probability be called P; the injury, L; and the burden, B;
liability depends upon whether B is less than L multiplied by
P: i.e., whether B is less than PL."
United States v. Carroll Towing (159 F.2d 169 [2d Cir. 1947]
===============================================================
Updated 1/26/04
CSO/DIR. Internet Network Eng. SR. Eng. Network data security
IDNS. div. of Information Network Eng. INEG. INC.
ABA member in good standing member ID 01257402
E-Mail jwkckid1@ix.netcom.com
Registered Email addr with the USPS
Contact Number: 214-244-4827