Ansermot.ch Another computer sciences blog….

The Google’s passwords management system could be compromised, following the Chinese attacks of 2009

The attacks last December for Google from China, the management system passwords have been compromised the firm (the level of intrusiveness of the system had not known).

At Google, it's a program called Gaia which manages passwords of users for access to all web services of the firm, including those dedicated professionals (Google Apps). This application is highly confidential and rarely mentioned.

Asian Hackers have managed to get into googlienne infrastructure, but they have not managed to steal passwords of Gmail. Good news for the millions of users mail client.

However, vigilance is warranted because cybercriminals may be able, during their private tour of the bowels of the giant benefit to identify vulnerabilities unknown to date.

There is therefore a risk that hackers operate a return to the date of their choice, and despite the security enhancements introduced by Google.

These threats could explain the arrival of a geolocation tool in Gmail (to check if the connection is from a usual place).

For, according to an anonymous source close to the investigation, the intruders have targeted especially the jobs of developers in the Gaia ... And tried to access the source files of the application. How it had it been planned?

Using the information in "moma", an internal file that lists all employees and their activities.

Source:
The New York Times
Developpez.com

Posts that maybe you want to read ::

• Pwn2Own: an iPhone hacked in 20 seconds
• Google announced the integration of Gmail in HTML5
• Beijing censors Google again, the results of Hong Kong are blocked
• First malware to practice overwrite discovered hidden in an Adobe Updater
• A hacker sentenced to 20 years in jail for datas stealing