Chrome Version : 50.0.2661.102 m
URLs (if applicable) :
Other browsers tested:
Add OK or FAIL, along with the version, after other browsers where you
have tested this issue:
Safari:No
Firefox:No
IE:No
What steps will reproduce the problem?
(1)Recovery of account using questions
(2)Using same ip as that of home and ip
(3)
What is the expected result?
Data mishandeled,Android phone locked and can be erased also confidential data at google drive and docs at verge.
What happens instead?
Please provide any additional information below. Attach a screenshot if
possible.
Hello GRP Team,
I am technical Head at Gorras India Private limited.I did not intend to harm some one by hacking into his account.I on the consent of my companies CEO hacked his account out of which i found some vulnerabilities.I am also attaching the video and screenshot copied to this mail to show you how i did it.
It was a phishing attack.
Target email was tabishakh@gmail.com
Id used to reset was tabish.gorras@gmail.com
Steps I took to hack in the account:
1.I took the option verify your identity by answering multiple question as other recovery options were unknown to me(mobile no,prompt on mobile,or the recovery question What was your first mobile no)
2.I used another email id named as tabish.gorras@gmail.com for recovery.It actually not the recovery email id of
3.After which i received a page where i had to write descrption where i wrote:
My mobile is lost and i cannot access my account.
4..I was also informed google will review it and revert u back in 2 hours
5..I received a mail to reset a password.
I wanted to actually find the location of the mobile.So steps i took
1.I went to google play to remotely download cerberus(anti-theft app) which can be used to trace location.
2.Later i found out on my CEO's phone that it was prompting that you need to sign in into your google account.
3.I googled android device manager.
4.I signed into it .
5.Tried to locate phone but the phones location was unavailable
6.I tried to ring the phone the phone rung
7.Other 2 options was also accessible lock and erase phone.
8.I locked the phone and could also erase it .
What vulnerabilty i found here was that as i had reset the password the whole google account had come out.For the same reason location was unavailable but ring,lock and erase phone were still accessible.
Further adding that that the account has confidential company data on google drive and docs and can be mishandeled.
I did more research on this, and found out that google for account recovery also looks into IP where the account was previously used i.e.(home or office ).
But the same network i.e.(home or office) wifi connections can be hacked using penetration softwares.
I received the mail form accounts-support-ara@google.com at tabish.gorras@gmail.com to reset the account password.
Google Accounts
Hi!
I have some good news!
You're one step away from regaining access to your Google account,tabishakh@gmail.com. Just click below to reset your password:
Reset password
Reset links expire in 48 hours so reset your password at the earliest. If the link has expired, simply request a new link. If you didn't initiate this request, don't worry; you don't need to take any action and you can disregard this email.
If you use your Google account on a mobile device or email client, you have to sign in to that account again on your device/client so the new password is registered by the device/client. Please see this help article for more information.
We're glad to have you back!
Regards,
Rod
The Google Accounts Team
This email can't receive replies. For more information, visit the Google Accounts Help Center.
© Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
I have earlier tried phishing on yahoomail and was successful in doing so, but this was my first time that i found a vulnerability at google.
I hope you see my mail as quickly as possible and revert me back soon.
Warm Regards,
Kunal Bhan
|
Deleted:
ice_screenshot_20160517-035442.png
209 KB
|
|
|
Deleted:
ice_screenshot_20160517-035526.png
186 KB
|
|
|
Deleted:
ice_screenshot_20160517-035533.png
181 KB
|
|
|
Deleted:
ice_screenshot_20160517-035540.png
176 KB
|
|
|
Deleted:
ice_screenshot_20160517-035546.png
238 KB
|
|
|
Deleted:
ice_screenshot_20160517-035644.png
244 KB
|
|
|
Deleted:
ice_screenshot_20160517-035739.png
209 KB
|
|
|
Deleted:
ice_screenshot_20160517-035800.png
214 KB
|
|
|
Deleted:
ice_screenshot_20160517-035913.png
220 KB
|
|
|
Deleted:
ice_screenshot_20160517-035944.png
213 KB
|
|
|
Deleted:
ice_screenshot_20160517-035953.png
188 KB
|
|
|
Deleted:
ice_screenshot_20160517-035956.png
200 KB
|
|
|
Deleted:
ice_screenshot_20160517-040235.png
112 KB
|
|
|
Deleted:
ice_screenshot_20160517-040338.png
94.0 KB
|
|
|
Deleted:
ice_screenshot_20160517-041119.png
596 KB
|
Comment 1 by thestig@chromium.org
, May 16 2016