[broken link removed]
Some friends of mine have had their gmail accounts hacked using this hijack.
It works something like this. You visit an "evil site" while logged into your gmail account. The "evil site" runs a script that sets up a email "forward and delete" filter in your gmail settings. The filter might only work for mails that contain the word "password " (say). These emails are forwarded to an email address in the far east. The hackers then use the passwords gleaned to hack other accounts. You may be unaware that this has happened.
Im not sure how you can prevent this but suggest logging out of gmail unless you are acutally using it, running noscript or similar, use browsers other than IE, check your gmail settings on a regular basis.
Some friends of mine have had their gmail accounts hacked using this hijack.
It works something like this. You visit an "evil site" while logged into your gmail account. The "evil site" runs a script that sets up a email "forward and delete" filter in your gmail settings. The filter might only work for mails that contain the word "password " (say). These emails are forwarded to an email address in the far east. The hackers then use the passwords gleaned to hack other accounts. You may be unaware that this has happened.
Im not sure how you can prevent this but suggest logging out of gmail unless you are acutally using it, running noscript or similar, use browsers other than IE, check your gmail settings on a regular basis.