TechRadar: Google finally forced to patch serious Gmail bug after exploit published online

TechRadar: Google finally forced to patch serious Gmail bug after exploit published online. “The vulnerability could have allowed an attacker to send imitation emails posing as any Gmail or G Suite customer, opening the door to an array of spear phishing and spam-based attacks – which could also be used to smuggle malware onto the target system. Google had known about the flaw for 137 days prior to issuing the fix, but dragged its feet until security researcher Allison Husain published proof-of-concept exploit code to her blog.”