Philosophically Secure Eugene Kogan's blog on information security and software engineering

12Mar/080

G-Archiver is evil

This is a great lesson in why not to blindly trust random software that you find on the Internet. G-Archiver, a program created to help users locally save their Gmail messages, has a piece of code in it that sends your Gmail login and password to the author. You can see a scary screen shot of his inbox, since the guy had his own Gmail credentials hard coded right into the program, which was obviously discovered.

The details are at SANS ISC (source code) and Coding Horror (screen shot).

  • E-mail this story to a friend!
  • Digg
  • Facebook
  • LinkedIn
  • del.icio.us
  • StumbleUpon

Enjoy this article?

Consider subscribing to our rss feed!

Filed under: google, reversing, security Leave a comment
Comments (0) Trackbacks (0)

No comments yet.


Leave a comment


No trackbacks yet.

« Malicious CHM file targets PGP Hackers for Charity: AOET.org project »

Pages

Links

Categories

Meta