Published at LXer:
You might want to be very careful before entering your username and password on any "new" services from Google. Developer Eric Farraro has uncovered a potential hole in Google's Public Search Service that allows a malicious (or mischievous) person to put up a fake Google sign-in page to collect usernames and passwords for real Google services.
Read More...