Only a week after the release of Google Buzz, some hackers have found an exploit after tirelessly looking for one. Awesome! They found an exploit that can completely compromise your Google buzz account! According to ha.ckers.org, the exploit actually is inside the code on the mobile side of things.
Google has already applied a patch to this exploit, it was deployed Tuesday night with an email from Google explaining the whole messed up situation. The cross-site scripting error which is common in web applications involved an exploit where an attacker can inject client-side scripts into web pages viewed by others.
Google issued a statement that there was “no indication that the vulnerability was actively abused.” It is certainly very promising for Google Buzz users that the exploit is already patched and no sensitive data was stolen or compromised, but let’s get serious here.. it shouldn’t have happened in the first place. It is like Buzz was shipped out just to get it out of the way, and I have a strange feeling that they are regretting it.
If you are scared out of your mind, I suggest you disable Buzz. It just isn’t worth the hassle.
