Security Bites 110: Breaking Google Gadgets

This week's podcast guests are Robert Hansen and Tom Stracener, who plan to disclose a zero-day vulnerability in Google Gadgets at Black Hat next week.

by Robert Vamosi August 1, 2008 1:51 PM PDT

From gadgets that slide-show pictures of vacations past to calendars that show events in the future, Google Gadgets look cool. But they also have the potential to contain vulnerabilities like anything else within Web 2.0.

By design, Google Gadgets allow scripted code to be uploaded by the end user, creating interesting new attack vectors for those with malicious intent.

CNET's Robert Vamosi talked with Robert Hansen (aka Rsnake), chief executive of SecTheory, and Tom Stracener (aka Strace) of Cenzic. Both will be presenting a talk called "Xploiting Google Gadgets: Gmalware and Beyond" at the annual Black Hat conference in Las Vegas next week.

During the talk, they plan to disclose a zero-day vulnerability in Google Gadgets that will make Gmalware (Gmodules-based malware) a significant threat.

Listen now:

Download today's podcast

Don't Miss

How Facebook's Zucked-up IPO just killed the tech bubble
Internet & Media
Success! Space station snags SpaceX Dragon capsule
Cutting Edge
75 years of the Golden Gate Bridge (pictures)
Slideshow
Cutting-edge all-in-one Asus
Review

CNET Update

Networks are hopping mad over Dish's commercial skipping

There's a trick to keeping location off photos in the new Facebook Camera app, PayPal is popping up at more retailers, and Dish Network is fighting a legal battle over skipping commercials.

Play Video

Security Bites 110: Breaking Google Gadgets

Don't Miss

Featured Posts

Most Popular

About Security Bites podcast

RSS

my Yahoo

Google

MSN

CNET Mobile Apps