TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

News

Critical Google Account Vulnerability Exposed Users’ Phone Numbers

By rooter
A security researcher has identified a critical vulnerability in Google’s account recovery system that could have allowed attackers to obtain the phone numbers of Google users by exploiting an outdated recovery mechanism that functioned without newer JavaScript protections.

How was the vulnerability exploited?

It turns out that Google’s username recovery form has been operating with JavaScript disabled, circumventing modern bot protections implemented for other services since 2018.

Accordi

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

News

Did Live Nation punish a venue by taking Billie Eilish away?

rooter
News

A new video from the White House mixes Call of Duty footage with actual video of Iran strikes

rooter
News

Seven tech giants signed Trump’s pledge to keep electricity costs from spiking around data centers 

rooter

You Missed

News

Did Live Nation punish a venue by taking Billie Eilish away?

News

A new video from the White House mixes Call of Duty footage with actual video of Iran strikes

News

Seven tech giants signed Trump’s pledge to keep electricity costs from spiking around data centers 

News

TerraPower gets OK to start construction of its first nuclear plant