• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • April 16th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Technology News
Google News

Gmail’s Spam Filter Not Impenetrable For Hackers

February 11th, 2017 Waqas Security, Google News, Scams and Fraud 0 comments
Gmail’s Spam Filter Not Impenetrable For Hackers
Share on FacebookShare on Twitter

Most of us today use Gmail as our primary email platform. It is indeed a very useful platform that is known for its efficiency and effectiveness. However, Gmail may not be as effective as we think it is.

According to a recent research conducted by Renato Marinho at Morphus Labs, Gmail does not seem to spam emails that are sent with the @gmail.com address, even if it is a fake one. The trick is used to bypass Google’s spam recognition system and hence the email seems valid when in reality, it has been generated from another server altogether. This means such an email does not go to the spam folder; rather, it appears in one’s inbox.

More: Gmail Phishing Scam Stealing Credentials Through Infected Attachment

How can you know if it is spam?

Sadly, it is not that easy. However, one may view the address in the sender’s field as that may reveal the Gmail address to be generated from a different server. Nevertheless, this is no use since most spam emails are capable of injecting malware just by being clicked and viewed. What is more disappointing, is that for Android and iOS users, such an option of finding the server’s actual name in the sender’s field is not available.

Gmail experimental illustration shared by Morphus Labs.

The Mechanism

Research suggests that whenever a spam email with a fake Gmail address is trying bypass Gmail spam filters, it has to connect to the Gmail’s server by appearing to be valid. As such, the spammer can easily mask the fake Gmail address as if it is a legitimate one and go through. 

“Although it has not been considered a security bug, in our opinion, it would be better if Gmail could at least adopt the same behavior we saw when trying to spoof a non-existing Gmail account in which security alerts were shown. Additionally, we suggest to make it possible to view message security details within the Gmail iOS app, as today these users have no ways to verify if they are being spoofed”, writers Marinho.

Google’s views

Although the trick can be potentially harmful, Google does not seem to be very serious about it. When asked as to what should be the course of action to counteract the problem, Google said that it is not a big issue as it does not interfere with a user’s privacy.

[fullsquaread][/fullsquaread]

More: Hacker finds flaw in Gmail allowing anyone to hack any email account

An opinion such as this can jeopardize the reputation that Google has on the market. While Yahoo and Microsoft recognize such camouflaged email addresses as fake, Google does not.


DDoS attacks are increasing, calculate the cost and probability of a DDoS attack on your business with this DDoS Downtime Cost Calculator.

  • Tags
  • gmail
  • Google
  • hacking
  • internet
  • Privacy
  • Scam
  • security
  • Spam
Facebook Twitter LinkedIn Pinterest
Previous article Tor and Its 10 Best Alternatives
Next article New Ticketbleed Vulnerability Bleeds Like Old Heartbleed.. Literally
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
2021 and Emerging Cybersecurity Threats

2021 and Emerging Cybersecurity Threats

Unpatched MS Exchange servers hit by cryptojacking malware

Unpatched MS Exchange servers hit by cryptojacking malware

Indian supply-chain giant Bizongo exposed 643GB of sensitive data

Indian supply-chain giant Bizongo exposed 643GB of sensitive data

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
1-click code execution vulnerabilities in popular software apps
News

1-click code execution vulnerabilities in popular software apps

2021 and Emerging Cybersecurity Threats
Security

2021 and Emerging Cybersecurity Threats

SolarWinds Hack - US officially Blames Russian Intel Agency Hackers
Cyber Crime

SolarWinds Hack - US officially Blames Russian Intel Agency Hackers

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us