SaaS Week

Krissi Danielson

Google Apps Vulnerable to Session Stealing Attacks?

By Krissi Danielson on April 16, 2008 3:38 PM 0 Vote 0 Votes

Matthew Broersma at TechWorld has written an interesting article about potential security vulnerabilities in Google Apps, particularly in Google Spreadsheets.

According to work done by researcher Billy Rios, a security flaw (now fixed) was present in Google Spreadsheets that left users vulnerable to session stealing. Broersma reports that Rios believes this is a reminder that developers need to be aware of cross platform issues and how browsers may handle script and other code in different ways.

Is this a concern for other SaaS applications? Time will tell.

Recent posts from our Blogs

Digitization Opens The Floodgates for Process Improvement by Nari Kannan in New Frontiers in Business Intelligence
How Much Does that Mashup in the Cloud Cost You? by Phil Wainewright in The Connected Web
Unlocking the Mysteries of High Finance with BPM by Dennis Byron in BPM in Action
Do the reports you generate prompt action? by James Taylor in James Taylor's Decision Management
The Place for Semantics within Data Integration by David Linthicum in Leveraging Information and Intelligence
Adapting Architecture, Technology for the Coming Economic Rebound by Joe McKendrick in SOA in Action Blog
When MDM Means "Managing Dumb Meatheads" by David Linthicum in Leveraging Information and Intelligence
Can ITIL help fix SOA? by Beth Gold-Bernstein in SOA - Integration Industry Pulse
Goodnight Cloud Misconceptions by Phil Wainewright in The Connected Web
Business Intelligence or Business Analytics? by James Taylor in James Taylor's Decision Management

SaaS Week discusses market trends and roundups of Software as a Service (SaaS) industry news, along with social networking, collaboration, and other neat enterprise Web 2.0 technologies. SaaS Week also offers Q&As with interesting Web 2.0 and SaaS vendors.

Recently Commented On

Reactions to Google Chrome (1)
film fan wrote: there are so many advantages and fe... [more]
Are SaaS Naysayers Forgetting About Customers? (1)
Scott Sehlhorst wrote: Thanks, Krissi, for one of the bett... [more]
Everyone Loves Amazon Elastic Block Store (EBS) (2)
bubbles wrote: EBS is not a SAN by any means even ... [more]
Would 'Live Web' Be a Better Buzzword than 'Web 2.0'? (2)
Jeremiah Ryan wrote: Yes the acronyms and buzzwords do g... [more]
SaaS Stocks Starting to Shine? (1)
Jijesh wrote: I did read the article by Sramana e... [more]

Recent Webinars

SaaS Week

Krissi Danielson

Google Apps Vulnerable to Session Stealing Attacks?

Leave a comment

Recent posts from our Blogs

Goals