Set as Homepage - Add to Favorites

九九视频精品全部免费播放-九九视频免费精品视频-九九视频在线观看视频6-九九视频这-九九线精品视频在线观看视频-九九影院

【hd video sex animals beautiful】Google patched a major security flaw that could've exposed YouTubers' email addresses

Google has fixed a security flaw that exposed the email addresses of YouTube users,hd video sex animals beautiful a potentially massive privacy breach.

Google — which owns YouTube — has confirmed that the vulnerabilities discovered by cybersecurity researchers, who go by Brutecat and Nathan, have been addressed, according to a report in BleepingComputer.

Aside from the breach of privacy that would've affected all YouTube accounts, many YouTubers like controversial content creators, investigators, whistleblowers, and activists keep their identities anonymous to protect their safety. Exposing such users' emails could have had huge ramifications.


You May Also Like

SEE ALSO: Google is reportedly developing a ‘fake’ email feature to help you avoid spam

Brutecat discovered that blocking a user on YouTube revealed a unique internal identifier Google uses for each user across all of its platforms (Gmail, Google Drive, etc.) called a Gaia ID. They then figured out that simply clicking the three dot icon of a user's live chat profile to access the block function triggered an API request that revealed their Gaia ID.

Mashable Light Speed Want more out-of-this world tech, space and science stories? Sign up for Mashable's weekly Light Speed newsletter. By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy. Thanks for signing up!

This in itself is already a security flaw since it exposed the unique identifiers for YouTube accounts that is only meant to be used internally. But now that Brutecat was able to retrieve users' Gaia IDs, they set out to see if they could reveal the email addresses associated with each ID.

With Nathan's help, the two researchers surmised they could do this with "old forgotten Google products since they probably contained some bug or logic flaw to resolve a Gaia ID to an email." Using Google's Recorder app for Pixel devices, they tested sharing a recording with an obfuscated Gaia ID and blocked the user from receiving an email notification by renaming the file with a 2.5 million letter name, which broke the email notification system because it was too long.

Now that the hypothetical victim wouldn't be notified, the researchers sent the file sharing request with the Gaia IDs, effectively converting the ID into an email address.


Related Stories
  • Apple Maps follows Google, relabels Gulf of Mexico as America
  • Google: We're not participating in European fact-checking rules for Search or YouTube
  • YouTuber GamersNexus sues Honey over alleged scam

Thanks to Brutecat and Nathan's sleuthing, Google was able to lock down that vulnerability and prevent hackers from accessing everyone's email address associated with their YouTube accounts. The vulnerability was disclosed to Google in Sep. 2024 and was finally fixed on Feb. 9, 2025. That's a long time for potential exposure, but Google confirmed to BleepingComputer that there were "no signs that any attacker actively exploited the flaws."

In exchange for their work, the researchers received a cool $10,633. Phew, crisis averted.

0.122s , 8358.015625 kb

Copyright © 2025 Powered by 【hd video sex animals beautiful】Google patched a major security flaw that could've exposed YouTubers' email addresses,Data News Analysis  

Sitemap

Top 主站蜘蛛池模板: 欧美日韩不 | 国内精品免费久 | 91干屁眼视频 | 综合五月天 | 亚洲综合亚洲综合网成人 | 夜夜橾天天橾 | 动感小站+在线视频+丝 | 韩日精品视频 | 欧美日韩精品一区二区三区视 | 国产精品对白 | 暴雨入室侵犯进出肉体免费观看 | 亚洲国产综合在线 | 一区二区色综合 | 日本好屌色不卡视频在线观看 | 国产极品视频一区二区三区 | 欧美特一级 | 国产综合专区一区二区 | 不卡影片| 天天槽天天槽天天槽 | 亚洲欧洲一区 | 欧美中文字幕人成在线网站 | 两个人的免费完整版中文字幕 | 一区二区三区免费在线观看视频 | 国产老妇玩伦国产熟女高清 | 韩国伦理电影在线观免费观看 | 欧美精品一区 | 琪琪午夜福利免费院 | 国产一区二区三四区 | 亚洲成a人片在线观看天堂无 | 最新高清电影在线免费观看 | 国产91尤物在线观看互 | 午夜福利电影院 | 国产成年码 | 欧美综合激情网 | 国产va免 | 两性色午夜视频免费播放 | 92国产精品午夜福利免费 | 日韩中文字幕亚洲精品 | 国产一级精品高清 | 国产美女精品视 | 国产一区二区三区在线观看 |