Hasta La Gadget!

Google is constantly improving their seamless integration between their various services, and today they’ve focused on Gmail and Google Drive. Google is making it easier for users to attach Google Drive files into Gmail messages by allowing up to 10GB file sizes when sending an email, as long as the files are stored in your Google Drive, since Gmail itself wouldn’t be able to store a 10GB file in the first place.

What’s probably the most convenient aspect about this feature, is that since the file you’re attaching is in your Google Drive (thus, in the cloud), everyone you send it to will have the most up-to-date version, which means you can make changes to the attachment even after you send off the email, and your recipients will still see the updated version.

Gmail will also double-check that all of your recipients have access to the attachments that you’re sending. So, whenever you send a file from Google Drive that isn’t shared with everyone, you’ll be prompted with the option to change the file’s sharing settings without leaving Gmail. The feature will also work with Drive links pasted directly into emails.

Sparrow for Mac has long supported a similar feature, where you could easily paste in a Dropbox attachement, but it’s certainly nice that Google has finally done this with Gmail and Google Drive. This new integration will roll out gradually over the next few days, and you’ll also need to be using the new compose window that was recently launched.

Gmail adds support for 10GB Google Drive attachments is written by Craig Lloyd & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

Hacker “TheHell” is selling an exploit that allows individuals to hijack a Yahoo! email account. The method is shown off in a video that was posted on Darkode, where the exploit is being sold for $700, and then reposted on YouTube. Yahoo! has been notified and is looking for the security hole, which it says can be fixed in a few hours once discovered.

The zero-day exploit takes advantage of a cross-site scripting vulnerability, allowing the hacker to steal a Yahoo! user’s cookies and take control of the account. In order to work, the victim must click on a malcious link. Upon doing so, the user’s cookies will be stolen and he or she will be redirected back to the Yahoo! email home page.

Said TheHell: “I’m selling Yahoo stored xss that steal Yahoo emails cookies and works on ALL browsers. And you don’t need to bypass IE or Chrome xss filter as it do that itself because it’s stored xss. Prices around for such exploit is $1,100 – $1,500, while I offer it here for $700. Will sell only to trusted people cuz I don’t want it to be patched soon!”

Yahoo stated that while fixing the issue will be simple enough, that can’t happen until they actually find “the offending URL.” This isn’t the first time an XSS attack has been directed at Yahoo!, however, with some recent examples of vulnerable linkes including surveylink.yahoo.com and order.store.yahoo.com. You can see a full list of XSS vulnerabilities and whether they’ve been fixed over at XSSed.com.

[via Sophos]

Hacker selling $700 Yahoo! email exploit is written by Brittany Hillen & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.

If you didn’t already know that the Taliban had a mailing list, your mind is already blown. But here’s a solid one-upper: the Taliban spokesperson accidentally CC’d everyone on that list in an otherwise pedestrian email, outing some people who likely didn’t want the world to know they were subscribers. More »

David Petraeus might not have been a good enough spy to avoid getting busted in the arms of his push-up-crazed biographer, but he did use a damn clever trick for sneaky correspondence: the neglected draft folder. More »

Sparrow, the popular email client for iPhone, was acquired by Google over the summer, and it was announced the acquisition would mean no more feature updates for the app. However, that doesn’t mean the Sparrow team would skip full iOS 6 and iPhone 5 support, so they ended up pushing out an update, but to everyone’s surprise, it was rejected by Apple.

Sparrow developer Dinh Viet Hoa announced on Twitter that the Sparrow app update for iOS 6 and the iPhone 5 was rejected by Apple, and explained why later on in a reply. Apple’s rejection had something to do with the app’s Rich Text format. The developer was told that if they didn’t update the app with the corrections, it would be removed from the iTunes App Store.

Rich Text editing in email is a feature that Apple added in iOS 6, which means that the Sparrow team will have to release an update for the email client that will be for iOS 6 only in order to take advantage of Rich Text. iOS 5 users will still be able to use Sparrow, but they won’t be able to update to this latest version.

However, Rich Text support is actually built into Apple’s own Mail client in iOS 5, so we’re not sure why Apple has a problem with Sparrow’s Rich Text formatting in this latest update, which would’ve been compatible with iOS 5. Then again, the update is meant for iPhone 5 users who are already running iOS 6 anyway, so it shouldn’t be a huge problem for a majority of Sparrow users.

[via The Next Web]

Sparrow iPhone 5 update rejected by Apple is written by Craig Lloyd & originally posted on SlashGear.
© 2005 – 2012, SlashGear. All right reserved.