Hacker collects 272m email addresses and passwords, some from Gmail:
The passwords and email addresses, which include some from Gmail, Yahoo and Russia’s mail.ru service, aren’t necessarily the keys to millions of email accounts. Rather, they had been taken from various smaller, less secure websites where people use their email addresses along with a password to log in.
People who use a different password for both their email account and, say, Target.com, won’t be affected. But those who tend to use the same password for multiple sites as well as their email should change their email password.
Gmail Android App Bug Lets You Send Emails Pretending To Be Someone Else:
While this is a low risk vulnerability, given that it only works within Android’s Gmail app, it could be abused by someone with malicious intentions to send phishing emails that have a higher probability of tricking victims. This is exactly the scenario that Zhu posited to Google when she alerted them of the bug.
It’s always been possible to spoof email envelope addresses, but spoofed emails now usually get caught by spam filters or get displayed with a warning in Gmail, Zhu told Motherboard. With this bug, a hacker can get around these protections.
Source: Vice Magazine
Revealed: How DOJ Gagged Google Over Surveillance of WikiLeaks Volunteer:
The Obama administration fought a legal battle against Google to secretly obtain the email records of a security researcher and journalist associated with WikiLeaks.
Newly unsealed court documents obtained by The Intercept reveal the Justice Department won an order forcing Google to turn over more than one year’s worth of data from the Gmail account of Jacob Appelbaum (pictured above), a developer for the Tor online anonymity project who has worked with WikiLeaks as a volunteer. The order also gagged Google, preventing it from notifying Appelbaum that his records had been provided to the government.
Source: firstlook.org