Recently some of the blogs owners and website owners reported that their domains are hijacked due to vulnerability in Gmail. The domain was hijacked by setting filters for particular domain registrar email for example (support@someregistrar.com) on domain owners Gmail accounts and the hijackers requested password from the domain registrar.

The Gmail filter which automatically forwards the email from support@someregistrar.com to hijackers email address. The hijackers now able to log in to domain owners account and transferred the domain to their registrar. The question is how did the hijackers able to hack domain owners Gmail account?.

Geek Condition blog explained how Gmail can be hacked by using “Unique Account Identifier” and “Session Authorization Key“.

Gmail Online Security Blog says that it is a phishing activity. The Attackers sent customized e-mails encouraging web domain owners to visit fraudulent websites such as “google-hosts.com” that they set up purely to harvest usernames and passwords. Once attackers gained the user credentials, they were free to modify the affected accounts as they desired.

Google recognizes everyone to run their entire session using https. For more info read Google Online Security blog.