Independent security researcher Yan Zhu has discovered a new bug in Gmail that would allow a spammer to impersonate the email accounts of a legitimate user. The spammer only has
to change its display name in the settings on the official Gmail app in order to hide their actual email address. This will make the email look like it is coming from the address that you
put in (Zhu tested “”firstname.lastname@example.org”). Google is not fixing the issue, claiming that it has always been able to
- BGR, Tuesday, November 17, 2015 4:35 AM
spoof email envelope
addresses, but pointing out that spoofed emails are likely to get caught by spam filters.
Read the whole story at BGR »